Windows ANI patch problems reported

Article

Windows ANI patch problems reported

Bill Brenner, Senior News Writer
Some IT shops are having trouble installing the out-of-cycle Windows ANI patch Microsoft released Tuesday.

The Bethesda, Md.-based SANS Internet Storm

    Requires Free Membership to View

    Login

    SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Center (ISC) reported some installation problems with the patch released in MS07-017, which fixes a glitch in how Windows handles animated cursor (.ani) files.

"We have received several emails today from people who are having problems with the patch," ISC handler Deborah Hale wrote on the site. She said Microsoft is working to address the problems and is asking anyone who has trouble after installing the patch to contact Microsoft Product Support Services at 1-866-PCSAFETY. The ISC site links to Microsoft, which addresses some of the problems reported so far.

MS07-017 was released a week ahead of Microsoft's regularly-scheduled security update because the flaw has been targeted in a number of attacks. Microsoft confirmed last week that attackers could exploit it to run malicious commands on a victim's machine. The flaw can be exploited when users visit a malicious Web site or open a tainted email attachment. Users are at risk even if they are browsing with Internet Explorer 7 on a system running Windows Vista. Most versions of Windows are vulnerable.

Windows ANI flaw:
Microsoft releases patch for Windows ANI flaw: Security companies are seeing massive attacks against the Windows ANI zero-day flaw, prompting Microsoft to rush out a fix a week before Patch Tuesday.

Microsoft warns of Windows zero-day; third-party fix released: Attackers are exploiting a new zero-day flaw in Windows, Microsoft confirmed Thursday. eEye Digital Security has released a temporary patch.

Alexander Sotirov, a researcher at Redwood City, Calif.-based Determina Inc. who discovered the ANI flaw last December and reported it to Microsoft, said in the Determina Security blog that the popular Mozilla Firefox browser is also susceptible to the flaw.

His posting included a short flash video demonstrating an exploit against the ANI vulnerability in which he says, "It turns out that Firefox uses the same vulnerable Windows component to process .ani files, which means it can be exploited in a way similar to Internet Explorer."

The news may be disheartening to Firefox users who view the open source browser as a safer alternative to the much-attacked Internet Explorer.

Mozilla has already released a number of Firefox security updates this year. Mozilla security chief Window Snyder said in a recent interview that Mozilla tries to issue a security upgrade every six weeks or so.

"We're continuously looking for vulnerabilities and continuously fixing them," she said at the time. "Users don't have to wait for the next version of the product to get a lot of the benefits of the security work we're doing. They get it on a regular basis."