Unfortunately there was a zero-day exploit found in the last few days. This means that Microsoft hasn’t patched it and the bad guys are already using it to completely take over computers. It’s publicly available on how to take over computers. The security hole is in the DLL that allows Microsoft computers to view pictures of a WMF type. There are already dozens of viruses being emailed that attack this security hole. Also 1000’s of websites also already have infected images on them.
It states:
To un-register Shimgvw.dll, follow these steps:
1. |
Click Start, click Run, type "regsvr32 -u %windir%\system32\shimgvw.dll" (without the quotation marks), and then click OK. |
2. |
A dialog box appears to confirm that the un-registration process has succeeded. Click OK to close the dialog box. |
Impact of Workaround: The Windows Picture and Fax Viewer will no longer be started when users click on a link to an image type that is associated with the Windows Picture and Fax Viewer.
To undo this change, re-register Shimgvw.dll by following the above steps. Replace the text in Step 1 with “regsvr32 %windir%\system32\shimgvw.dll” (without the quotation marks).
Comments