[Emergency message] Windows System latest vulnerability-> high-risk ani mouse pointer vulnerability unofficial immune Patch [visitors are required]

Source: Internet
Author: User
Latest Windows system vulnerabilities-> highly dangerous ani mouse pointer vulnerabilities unofficial immune Patches

The system is automatically restarted after the patch is installed.

Save your work before installation

Prevent loss of important information

Microsoft Windows is a very popular operating system released by Microsoft.

Microsoft Windows has the buffer overflow vulnerability when processing malformed animation Icon files (. Ani,

Remote attackers may exploit this vulnerability to control user machines.

Microsoft Windows does not correctly verify the size specified in the ani header when processing malformed files (. Ani), resulting in a stack overflow vulnerability.

If you are cheated to use IE to access a malicious site or open a malicious email message,

This overflow will be triggered, causing arbitrary code execution.

Note that Windows Explorer also processes some files with the file extension, such as. Ani,. cur, And. ICO.

Affected Systems;
All Microsoft Windows Vista versions

All versions of Microsoft Windows XP

Microsoft Windows Server 2003 SP1

Microsoft Windows Server 2003

All Microsoft Windows 2000 versions


Many websites at home and abroad have begun to exploit this vulnerability to spread malware, Trojan horses, and worms.


The Exploitation program of this vulnerability is typically disguised as an image.

You only need to click malicious proxyWebsite or email with a QR code

It will be infected with malicious programs.

And whether it is IE6 or IE7

Or non-ie browsers such as Firefox and opera

Windows NT/2000/XP/2003/Vista OS
All of them may be infected.

Other network applications, such as QQ, MSN, various email software, and RSS software, may also be affected by this vulnerability.


The Exploitation program of multiple versions of this vulnerability uses many techniques.

Therefore, the vast majority of anti-virus software, anti-vulnerability software, and active defense software will be bypassed.

Invalidate

This will cause great harm to user machines.

Once a machine without a patch opens a website or email containing malicious code

Viruses or malicious programs will immediately run in the background

Without any response, attackers can steal Trojans, malicious advertisement software, worms, and so on.

This patch is developed by eeye, an unofficial organization.
(Author:Derek soeder-eeye Digital Security)

The patch is tested to solve problems caused by the vulnerability.

Install this patch to prevent problems caused by this vulnerability.

We recommend that you install this patch to prevent malicious programs from harming your system.

========================================================== ==========
360 security guard thoroughly detects and removes various rogue software, comprehensively protects system security, and provides genuine Kaspersky v6.0

Latest free download: http://www.360safe.com

After the program is installed, an eeye windows. Ani zero-day patch project is generated in the Start Menu> program.

If you no longer need this patch, uninstall it here.

We recommend that you promptly pay attention to the Vulnerability Detection Function of 360 security guard to upgrade Microsoft's official patch

After the official patch kb935423 is installed (this patch has not been released yet), the unofficial program can be uninstalled.

After installation, an "eeye Windows Animated Cursor patch checker. lnk" is added to the Start Menu> program> Start"
After the restart, the system prompts 360 that a program named eeye Windows Animated Cursor patch checker. Lnk is added to the startup item, and the system prompts you whether to allow the program.
This is a program used to detect patch updates, with no harm.
You can choose to retain it or delete it.

Installation Package MD5: 4a997d7da0188acb0bd4850f8c812b80
Size: 345912 bytes

We recommend that you download this patch only on the 360 security guard forum or on a trusted website.
Prevent malicious programs from being infected

: Http://dl.360safe.com/AniPatch.rar

 

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.