But nowhere in the advisory posted is the term "WMF" was more what I was
trying to say. On closer inspection is does mention WMF only to say this
advisory is not related.
http://www.microsoft.com/technet/security/advisory/912920.mspx
"Is this issue related to the recent WMF issue or to Microsoft Security
Advisory (912840)?
No. The Win32/[EMAIL PROTECTED] worm does not affect the recent WMF
vulnerability as reported in Microsoft Security Advisory (912840)."
A removal tool if "already infected" means a vector neutral fix after
you've been infected by anything though any vector. This does nothing to
prevent the vector.
MS should have immediately released a beta patch w/o testing BS since
getting infected is worse than having a few possible issues for some
people with some apps/setups who could just uninstall the patch if it
caused trouble.
"We'll make buggy software, charge for it, and charge for supporting you
finding our bugs but we won't release patches until tested 7 ways from
Sunday."
Hayes Elkins wrote:
Right now it's in the form of a repair tool for already infected
systems. The *patch* (not a repair tool fix) is set to release via
microsoftupdate on Tuesday the 10th.
From: warpmedia <[EMAIL PROTECTED]>
Reply-To: The Hardware List <[email protected]>
To: The Hardware List <[email protected]>
Subject: Re: [H] WMF fix out
Date: Wed, 04 Jan 2006 10:57:12 -0500
Where in this is WMF fix?
Hayes Elkins wrote:
From: Gary Hicks [mailto:[EMAIL PROTECTED]
Sent: Wednesday, January 04, 2006 8:31 AM
To: Premier Contacts
Subject: Announcement - Microsoft Security Advisory (912920) Released
This Alert is to advise you that Microsoft Security Advisory
(912920), Systems that are infected with Win32/[EMAIL PROTECTED] may
download and run malicious files from certain Web domains beginning
on January 6, 2006 has been released.
