[deXter] Posted January 10, 2006 Posted January 10, 2006 Automatic Updates picked it up today:Funny thing is, the update hasn't been documented anywhere at all! Neither Google, Filemirrors, Microsoft or even MSFN's search engines threw up any results.Can anyone shed some light on this mystery update?Coincidentaly the system was also infected by AdWare.ShowBehind at the time of the update. Is it possible the malware somehow hijacked Automatic Updates? I mean, of course technically anything is possible, but then ShowBehind hasn't been documented to do so; or for that matter I don't think there even exist a malware that hijacks Automatic Updates.If anyone wants I can post the KB908519.log and/or the contents of C:\WINDOWS\$NtUninstallKB908519$\Title Edited - Please follow new posting rules from now on.--Zxian
boooggy Posted January 10, 2006 Posted January 10, 2006 that is the hotfix for january... cause today is m$ patchday...and i think the infection is coincidental.
[deXter] Posted January 10, 2006 Author Posted January 10, 2006 Thanks, yes it is a confirmed update!Still, no Google or Mircosoft search results throw up..Anyways the update can be downloaded from:http://www.microsoft.com/downloads/details...&DisplayLang=enWeird though cause this happened to me for the first time; I was always able to lookup updates on the web as soon as they came.. Looks like the web has been slow to catchup on this one ^_^
alrichey Posted January 10, 2006 Posted January 10, 2006 This patch is important as it fixes a major security leak when viewing graphics files. Check out the news on slashdot.org.
nmX.Memnoch Posted January 10, 2006 Posted January 10, 2006 MS06-002, Vulnerability in Embedded Web Fonts Could Allow Remote Code ExecutionKB908519 is the update for that security bulletin.
qpshelp Posted January 11, 2006 Posted January 11, 2006 (edited) This is the update for the huge security stink everyones been talking about the last few weeks. An unofficial patch was released a couple of weeks ago, but this looks like it is M$'s version Edited January 11, 2006 by qpshelp
Mr Snrub Posted January 11, 2006 Posted January 11, 2006 ...Funny thing is, the update hasn't been documented anywhere at all! Neither Google, Filemirrors, Microsoft or even MSFN's search engines threw up any results.You didn't try to click the link in the details you expanded?http://go.microsoft.com/fwlink/?LinkId=55919This is the update for the huge security stink everyones been talking about the last few weeks. An unofficial patch was released a couple of weeks ago, but this looks like it is M$'s versionWrong, that was MS06-001 and was an out-of-cycle update released on 5/1:http://support.microsoft.com/kb/912919/en-us
Lazy8 Posted January 11, 2006 Posted January 11, 2006 @qpshelpThis one addresses an issue separate from the Windows Metafile vulnerability (described in KB912919). You should have both installed--first reverting your system back to its previous state, if you had used any of the unofficial patches.
suryad Posted January 12, 2006 Posted January 12, 2006 I read there were 2 more flaws discovered even after the WMF patch was released .Granted that it was not as serious as the original flaw but still some lesser flaws remain.
![[deXter]](https://msfn.org/board/uploads/av-19437.jpg)
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now