Microsoft Windows Image Processing Vulnerabilities
Original release date: November 08, 2005
Last revised: May 12, 2006
Source: US-CERT
Systems Affected
Overview
Microsoft has released updates that address critical vulnerabilities in Windows.
Solution
Apply Update
Microsoft has released security updates for Windows. To obtain the updates, visit the Microsoft Update web site.
US-CERT also recommends enabling
Automatic Updates.
Description
The Microsoft Security Bulletin for November 2005 addresses vulnerabilities in the way Microsoft Windows processes image files. By tricking you into viewing maliciously
altered image files, such as pictures on web sites or in email messages, an attacker may crash or take over your computer.
For more technical information, see US-CERT
Technical Alert TA05-312A.
References
Author: US-CERT. Feedback can be directed to US-CERT.
Produced 2005 by US-CERT, a government organization. Terms of use
Revision History
November 8, 2005: Initial release
May 12, 2006: Corrected production statement