RetouchPRO

Go Back   RetouchPRO > Community > Salon
Register Blogs FAQ Site Nav Search Today's Posts Mark Forums Read


Salon Just hanging around...
(Social area, where non-retouching talk is encouraged)

WARNING: Virus Hidden In IMAGES

Reply
 
Thread Tools
  #11  
Old 01-05-2006, 10:56 AM
CJ Swartz's Avatar
CJ Swartz CJ Swartz is offline
Senior Member
 
Join Date: Sep 2001
Location: Metro Phoenix area, Arizona
Posts: 3,345
Blog Entries: 19
Thanks, guys!

Thanks, silica, Doug, Craig, Chris, Gary -- I've downloaded the fix from Gibson's site and downloaded the vulnerability test --- ran it before and after, with the after showing the fix worked.

At least I'm safer now until Microsoft has their fix ready "officially" (below is info from Gibson's site that says the Microsoft fix has been leaked and that Ilfak's fix can be removed AFTER the Microsoft fix is applied).

From http://www.grc.com/sn/notes-020.htm
"As expected, Ilfak's WMF vulnerability suppression patch, and his WMF vulnerability testing utility, both interact smoothly and seamlessly with Microsoft's forthcoming official security update. Ilfak's code can be left running while installing Microsoft's security update, then safely removed forever once the system has rebooted from the update.

Also, Ilfak's vulnerability tester properly recognizes the system's true WMF vulnerability condition under every combination of patch installations (either Ilfak's, Microsoft's, both, or neither). So, you may use Ilfak's solutions with confidence while Microsoft completes their extensive compatibility and regression testing for this forthcoming security update. Once the update is ready, install Microsoft's update, then safely remove Ilfak's patcher."

Last edited by CJ Swartz; 01-05-2006 at 11:03 AM. Reason: added update from grc.com
Reply With Quote top
  #12  
Old 01-05-2006, 03:22 PM
Gary Richardson's Avatar
Gary Richardson Gary Richardson is offline
Senior Member
 
Join Date: Mar 2004
Location: Yorkshire, England
Posts: 2,717
Glad to know the patch can be removed After installing the Microsoft fix. thanks for that CJ.
Reply With Quote top
  #13  
Old 01-06-2006, 02:49 AM
CJ Swartz's Avatar
CJ Swartz CJ Swartz is offline
Senior Member
 
Join Date: Sep 2001
Location: Metro Phoenix area, Arizona
Posts: 3,345
Blog Entries: 19
I installed Microsoft's fix, and removed Ilfak's fix and ran his vulnerability tester and still passed (after re-booting -- it shows your computer as vulnerable until you re-boot). Hopefully, this will be the last for a month or two...
Reply With Quote top
  #14  
Old 01-07-2006, 12:12 AM
CJ Swartz's Avatar
CJ Swartz CJ Swartz is offline
Senior Member
 
Join Date: Sep 2001
Location: Metro Phoenix area, Arizona
Posts: 3,345
Blog Entries: 19
Chris or Gary or ??

Will one of you guys please check out what happened to byRo when his computer malfunctioned after installation of the "fix"?

http://www.retouchpro.com/forums/salon/12481-what-just-hit-me.html
Reply With Quote top
  #15  
Old 01-07-2006, 02:56 AM
Gary Richardson's Avatar
Gary Richardson Gary Richardson is offline
Senior Member
 
Join Date: Mar 2004
Location: Yorkshire, England
Posts: 2,717
Looks like Windows Explorer (explorer.exe) got corrupted in some way (probably corrupted registry settings).

Have posted a possible way to get out of this for anyone who gets these symptoms. (see byRo's post).
Reply With Quote top
  #16  
Old 01-12-2006, 04:55 AM
Gary Richardson's Avatar
Gary Richardson Gary Richardson is offline
Senior Member
 
Join Date: Mar 2004
Location: Yorkshire, England
Posts: 2,717
Love M$ response. Don't worry, all it will do is crash the programme. Yeah that's of no consequence at all is it?

OK, it might not be a critical security risk any more, but it's still wrong and should be sorted. Come on M$ get your finger out.

On a side note, ever noticed that almost all exploits are based on buffer overruns, sloppy cut price programming, these should be removed in the debugging and beta testing process.
Reply With Quote top
  #17  
Old 01-12-2006, 02:36 PM
Gary Richardson's Avatar
Gary Richardson Gary Richardson is offline
Senior Member
 
Join Date: Mar 2004
Location: Yorkshire, England
Posts: 2,717
One of the guys at SWW used to have a signature that said
Quote:
"If you think it's bad now, just wait till Longhorn"
(for those who don't know, Longhorn was the beta name for Vista).

I think that pretty much displays the confidence we all have, that M$ will release even a remotely secure system.
Reply With Quote top
  #18  
Old 01-12-2006, 03:39 PM
Doug Nelson's Avatar
Doug Nelson Doug Nelson is offline
Janitor
 
Join Date: Aug 2001
Posts: 7,068
Blog Entries: 21
I just got a notice yesterday that an important Quicktime patch was released for both Mac and Win versions. It seems that someone could use images to execute programs on the user's computer. I wonder how come this didn't get all the press of the MS version? (tip: update your QT plugin)
Reply With Quote top
  #19  
Old 01-13-2006, 05:26 PM
Gary Richardson's Avatar
Gary Richardson Gary Richardson is offline
Senior Member
 
Join Date: Mar 2004
Location: Yorkshire, England
Posts: 2,717
Thanks Doug.
Reply With Quote top
  #20  
Old 01-14-2006, 06:56 PM
rondon rondon is offline
Senior Member
 
Join Date: Mar 2002
Location: north central florida
Posts: 470
Something to listen to

I stumbled on to this by accident (I was trying to define "twit") but it's timely... I don't know who these fellows are on the website though.

What they have is a broadcast mostly about the wmf vunerability and one high strung fellow claims it was an intentional back door left by microsoft that was discovered by an evil Hacker forcing microsoft to respond with a fix.. I'm only 2/3 of the way thru the audio broadcast as the phone bumped me and I am redownloading... but it spoken simply enough so that I am catching most of it..

BTW IrfanView was mentioned... my favorite viewer

look for the link here,

http://thisweekintech.com/

PS Twit is: This Week In Tech.

Last edited by rondon; 01-14-2006 at 07:07 PM.
Reply With Quote top
Reply

  RetouchPRO > Community > Salon


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Resizing images for RetouchPRO jeaniesa Photo Retouching 19 11-05-2016 09:28 PM
Reconsidering 16 bit Ed_L Input/Output/Workflow 14 11-01-2005 10:41 AM
New virus warning. Please read. Ed_L Salon 4 05-26-2005 04:19 PM
Hidden Power Dynamic Image Richard_Lynch Hidden Power Support 11 02-10-2005 05:09 AM
$ for RetouchPro - images roger_ele Website Feedback 0 12-04-2002 11:24 PM


All times are GMT -6. The time now is 09:57 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2017, Jelsoft Enterprises Ltd.
SEO by vBSEO ©2011, Crawlability, Inc.
Copyright © 2016 Doug Nelson. All Rights Reserved