Re: Microsoft Security Advisory (912840): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution

#4 01-05-2006, 02:27 AM

In microsoft.public.windows.inetexplorer.ie6.browser Stephen Howe <stephenPOINThoweATtns-globalPOINTcom> wrote:
> > The FAQ section of
> > http://www.microsoft.com/technet/sec...ry/912840.mspx has been
> > updated.
> >
> > Fully expand Suggest Actions > Workarounds subsection to see steps you can
> > take to "help block known attack vectors".

> What about Windows 2000 Professional SP4?
> Running that at work and that has

> 07/12/1999 12:00 52,496 shimgvw.dll

> Is the workaround useless for Windows 2000?

So it would appear, since the article specifically states, "Un-register
the Windows Picture and Fax Viewer (Shimgvw.dll) on Windows XP Service
Pack 1; Windows XP Service Pack 2; Windows Server 2003 and Windows Server
2003 Service Pack 1." No mention of Windows 2000 or ME.

> According to here
> http://www.updatexp.com/wmf-exploit.html
> ME & 2000 are vulnerable

--
Gary L. Smith
Columbus, Ohio