What Is KB925568 All About..?

The security "exploit" essentially revolves around the way that the Microsoft Internet Explorer browser handles a particular form of graphics known as "vector graphics".

A properly crafted webpage can be created to exploit this problem and install almost anything the hacker/criminal wants on the target machine!

In reality this will mean lots of spyware and malware to steal personal information such as bank accounts etc.

Should I Be Worried About KB925568?

Yes and No.

So far this exploit has only been seen on a few "adult related" websites... I am sure it will show up on more sites soon as criminals always like to jump on any security exploit that can make them money...

In an e-mail based attack of this exploit, customers who read e-mail in plain text are at less risk from this vulnerability. Instead users would have to either click on a link that would take them to a malicious Web site or open an attachment to be at risk from this vulnerability.

What Can I Do To Protect Myself?

A fully "patched" Windows XP computer running Service pack 2 can STILL be vulnerable to this attack.

HOWEVER, there are some basic steps to keep safe:

# Install anti-virus software and keep up to date!
# Install a personal firewall.
# Use Windows updates to patch security holes.
# Do not open e-mail messages that look suspicious
# Do not click on e-mail attachments you were not expecting
# Only visit websites you know and trust

...but the biggest is to install a modern Anti-Spyware application that will alert you to ANY software that is being installed on your computer WITHOUT you knowledge.

There are a few free applications available but in my personal opinion they do NOT offer the kind of protection you now need online due to so many criminal gangs working on the Internet. The one I use for ALL my computers/laptops is SpySweeper. More Here

If you already have one of the security "suite" packages from Norton, Panda, McAfee then you should be OK...

What Are Microsoft Doing To Help?

Thus far the attacks appear very targeted and very limited. Microsoft have actually been working on an update that addresses this known vulnerability and their goal is to have it ready for the October Security Update release (10th October), or before if they see widespread attacks.

* Updated 27th Sept 2006:

Microsoft have now released a security patch in response to this threat. This is an unusual step as Microsoft usually wait for the monthly security update cycle but in this particular case have released this patch ahead of that schedule. (Please note - If you have the beta/RC1 version of Internet Explorer 7 installed this patch will not work, one of the risks of using beta software...)

IF you have NOT already noticed the Windows XP Automatic Update facility downloading the patch for you (more here) then you can manually download the patch here:

� Microsoft Windows XP Service Pack 1 � Download the update

� Microsoft Windows XP Service Pack 2 � Download the update

� Microsoft Windows XP Professional x64 Edition � Download the update

� Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 � Download the update

� Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems � Download the update

� Microsoft Windows Server 2003 x64 Edition � Download the update

NB - If you applied any recommended workarounds involving VGX.DLL then these must be undone before applying this update. This is very important because if you do not revoke the VGX.DLL changes, the update could fail to install or deploy.

Installation Tip For Advanced Windows XP Service Pack 2 Users:

To install the security update without forcing the system to restart, use the following command at a command prompt for Windows XP:

windowsxp-kb925486-x86-enu /norestart

Fig 1.1 - Using the command line switch

More detailed information on the available installation switches for KB925486 is here. (technical users only.)

Add To Del.icio.us Digg It!

Share this page (just copy & paste)

HTML LINK - Post this page link in your blog or webpage!

If you have found this article on KB925568 useful, then why not sign up for my FREE Windows XP Newsletter service?

Enjoy the rest of site and remember if you have a query about this site or a comment to make then drop me a line at the Contact Page

Finally a quality XP Newsletter!

FACT: There are dozens of Windows XP newsletters - BUT this one is different!

Find out more here: XP Newsletter

Kind Regards

Marc Liron - Bio
Microsoft Digital Media MVP
Your Guide to using Windows XP
A Unique Windows XP Newsletter? Sign Up Now!
- Make sure you get your FREE tips and advice...

----------------------------------------------

Other Websites By Marc Liron - Microsoft MVP

News and Articles on Windows Vista:

www.instantvista.com

-----------------------------------------------------------------------------------------

The views on this website are my own and NOT that of Microsoft!
I am not responsible for the content of any sites linked to.
ALL Trademarks are freely acknowledged
The information provided on this website is provided "as is" without warranty of any kind.

This page was last updated 27th September 2006

KB925568

Vulnerability in Vector Markup Language Could Allow Remote Code Execution

More Articles at the Main Article Index