Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Zero-day flaw hits Windows XP


  • Please log in to reply

#1
Retired Tech

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
A new zero-day flaw has been reported in a system component of Microsoft's Windows XP.

Experts warned that, depending on the way in which the attack is conducted, the flaw could allow an attacker to execute code on a target system.

The vulnerability lies in two Windows components known as MFC42 and MFC71 which are part of the Windows API that is used by virtually all Windows applications to communicate with the operating system.

When the user opens a document that calls on the function, a condition could be created that leads to a crash and potentially allows an attacker to run malicious code on a user's system, according to Secunia.

There is currently no fix for the vulnerability, although Secunia said that the only applications known to access the components are HP's Photo & Imaging Gallery 1.1 and version 2.1 of the software/driver installer for HP's All-In-One series.

Secunia credited the discovery of the flaw to researcher Jonathan Sarba of the GoodFellas Security Research Team.

Administrators looking to minimise risk from the flaw should block user access to applications that use the vulnerable MFC components.

http://uk.news.yahoo...-6315470_1.html
  • 0

Advertisements


#2
Mr Freeze

Mr Freeze

    Member

  • Banned
  • PipPipPip
  • 321 posts
OK....if your exposed or hit with this...........can you use restore cds to fix the problem
i use hp slimline computer and all in one scanner/printer........i have restore discs
or do i have to reformat.................
  • 0

#3
Retired Tech

Retired Tech

    Retired Staff

  • Topic Starter
  • Retired Staff
  • 20,563 posts
It would depend on the options the restore discs give you, some will only return the computer to its day one condition, Windows and drivers are installed, but all data and subsequent programme install are lost

Whenever you have a problem with a rogue application this is a good move:

Please follow the procedures outlined here: Malware Removal Guide

You will need a PC which can connect to the internet

Run all the programmes as advised then post a current Hijack This Log in a new topic in the Malware Forum

For the purpose of accurate malware analysis, Hijack This Logs are only dealt with in the Malware Forum. Posting them anywhere else will result in a delayed response

If you are unable to run any of the programmes, please ask for advice in the Malware Forum
  • 0

#4
Mr Freeze

Mr Freeze

    Member

  • Banned
  • PipPipPip
  • 321 posts

There is currently no fix for the vulnerability, although Secunia said that the only applications known to access the components are HP's Photo & Imaging Gallery 1.1 and version 2.1 of the software/driver installer for HP's All-In-One series.


what good would malware forum do if theres no fix

anyway i have the restore discs
was wondering if the virus disabled the restoration
if it did then a clean install would be in order
  • 0

#5
Retired Tech

Retired Tech

    Retired Staff

  • Topic Starter
  • Retired Staff
  • 20,563 posts
The Malware Team use up to date methods, if - when there is a fix, they would know about it
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP