Must-have Fix for New, Under-attack Microsoft Flaw
A critical new zero-day flaw involving Microsoft DirectShow's processing of QuickTime content is under attack, Microsoft reported today.
The flaw in the quartz.dll processor in the DirectShow platform affects Windows XP, 2000 and Server 2003. Windows Vista, Server 2008 and Windows 7 are not affected. Crooks can go after the hole even if you have Apple's Quicktime installed, according to Microsoft.
Also, while opening a malicious QuickTime file could trigger the flaw, it's not required. According to a Microsoft post at its Security Response Center, "a browser-based vector is potentially accessible through any browser using media plug-ins that use DirectShow." So a drive-by-download may be possible, which can execute an attack in the background if you simply visit a malicious page.
The bad guys are already attacking this hole with "limited attacks," Microsoft says, but if this is half as bad as it sounds I'd expect such attacks to increase. While there isn't yet any patch available, Microsoft has made a quick "Fix-It" option available which can temporarily disable Windows parsing of QuickTime files.
To get the fix, visit this Microsoft support page and click the Fix It button under the "Enable Workaround" heading. You'll then download a file which, when run, will modify the registry to protect against this flaw. Later, after Microsoft has released a patch to permanently fix the hole, you can click use the "Disable Workaround" link on the same page to reverse the change.
For more information, see Microsoft Security Advisory 971778, along with posts on the Microsoft Security Research & Defense and Microsoft Security Response Center blogs.
» posted by ITworld staff
PC World
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
security
Powered by Twitter
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
