Windows Service Pack 2: a new security error

A newly discovered security flaw has a serious impact on the entire system using Windows Service Pack 2 announced by F-Secure and Sunbelt.

Malicious code takes advantage of security flaws in WMF image compilation tools to automatically download and install malware (malware).

WMF (Windows MetaFile) is a vector based on the image format used by Microsoft's operating system. The SHIMGVW.DLL file is loaded to compile the image, including a security error. This error will open the 'door' for a damaged WMF image, control the operation of the code, and potentially cause a system to be compromised.

Microsoft has patched security issues for WMF and EMF last November. The bug affects versions of Windows 2000, XP, and Windows Server 2003 operating systems.

' We have a few websites that we find with this security error. Every website has different spyware downloads. We just caught a few websites using new security bugs but now have found quite a lot to use this error to install bad resources. These image files can be edited very easily to download any malware or virus, 'said Alex Eckelberry, CEO of Sunbelt Software.

Mika Pehkonen from F-Secure has warned that: 'Right now, the entire system using Windows XP Service Pack 2 is affected by this security error and there is currently no patch'. F-Secure detects malicious WMF files such as W32 / PFV-Exploit.A, .B and .C.

' Users will be harmed if accessing a website that has an image file containing a security error. Internet Explorer users can be automatically affected. FireFox users will be affected if they decide to upload or download image files , 'Pehkonen added.

Microsoft has been notified of the above error and may release an emergency patch, separate from its 'Fourth Update' security patch. Sunbelt and F-Secure both rated the security flaw very seriously because users were very vulnerable and the system would be in immediate danger.

Information on this security error can be found here.

ONLINE