There are so many vulnerabilities available to the hackers nowadays, I guess it's less work for them if they just combine them into a "cocktail" that sprays you with several at one time. And all through a JPG picture, lovely. My ruling on Windows as my main OS? http://www.theregister.co.uk/Design/graphics/icons/comment/thumb_down_32.png

"What isn't in dispute is that IE 7 on Vista is not vulnerable"

I dispute your claim.

FTFA:

"However, on IE7 which is default on Windows Vista systems, risky ActiveX objects are blocked by default which may mitigate this 0-day attack."

So Vista with default settings _may_ mitigate this attack. And how many Vista users are in the habit of reducing its "security" for the sake of usability? Many, many users.

Yes they are "ambushed" - of course they are...

Microsoft even produce a msi to do it for you so you don't need to self-edit the registry.

Not really sure why they don't advertise this ?

http://support.microsoft.com/kb/240797

From the article :- "making changes to the Windows registry, a risky undertaking"

Don't MS provide a built in convenient gui tool to make this risk free (as windows zealots constantly remind us, using gui tools to do admin or any task eliminates making mistakes)

Isn't the registry just one big config file and editing the registry config file one of the main effective methods of low level windows administration?

Flaming Tux icon please.

Some advice to those still living in 2000:

1) Install Mozilla Firefox browser

2) Install AdBlock add-on to get rid of all pesky ads (blocks ad servers)

3) Install NoScript add-on to get rid of XSS and JS attacks (blocks JS except for whitelisted sites)

It's that simple to eliminate most ad, tracking and malware attempts.

Enjoy!

Wouldn't it be better if you lead by example and have a front page that will load if the user has blocked mobile code, adverts and cookies on their machine via their firewall?

As it stands to read your warning not to allow dangerous behaviour you have to allow dangerous behaviour. ?? :-/ ??

The inbuilt vulnerabilities of IE are only part of the problem. The other part being the websites that demand the dodgy functions be enabled to display correctly.

Let's have a code of best practice on the part of site designers to lead by example.

As it stands the concept of "YOU ARE IN DANGER OF BEING BUTTHURT - kindly lower your trousers and turn around so we can tell you about it" seems to be adding to the problem of these zero days to me.

I am aware of firefox - the same sadly cannot be said for my banks website. And yes this is another bone of contention. ;-P

Satanswombat

So Microsoft have found another "flaw" in Windows that can only be avoided by ugrading to the latest version; there is, of course, a workround for older Windows versions but it won't stop the Criminals for long - the only sure way to beat the bad guys is to "up" grade to Vista.

And lookit, another helpful Registry "fix" that will turn off the unwanted behaviour without the User needing to do more than run yet another Microsoft Registry hac^H^H^H Installer/editor. But I can't help wondering what other little "unexpected" issues may be caused when this one's loaded...

Some advice to those still living in 2000:

1) Switch to OS X

Enjoy!

"Not really sure why they don't advertise this ?"

Er, because they're trying to scare people into buying Vista/Windows 7, by any chance?

Is not one file.

New thing better and has more features than old thing shocker!

I agree, how terrible of Microsoft to design and produce a new product that might have more features and a better design that the old one!

Would you expect a car manufacturer to retro-fit better locks to your car five years after you bought it because someone worked out how to pick the old ones?

ActiveX components are restricted to only trusted zones.

Ergo, unless I add the URL to my list of trusted sites in group policy, it doesn't run activeX..

I also have similar lists for flash, java, javascript. All other plugins are blocked from being run, and no user can download executables from outside our network.

It's so secure the last nasty our AV software picked up was the blaster worm which someone brought inside our firewall on an infected laptop.

Any sys admin worth his salt will have similar measures in place. It's so secure when set up in this fashion, it makes other uncontrollable browsers such as firefox look so insecure they may as well be a virus, hence they are banned.

Some of us Europeans will be okay soon as when Windows 7 ships we won't have IE. :-)

Mine's the one with the Ubuntu CD in the pocket.

,, The smitfraud old thing that hijacks your DNS address and then redirects you?

I've had a load of people reporting this in the last few days

DNS is changed to 85.255.112.136

Just wondering

Paul

"The site includes a JPG file that exploits a variety of vulnerabilities, "including an unprecedented stack overflow in DirectShow MPEG2TuneRequest,"

So, this image file somehow creates a stack overflow in music related code?

Id rather set myself on fire than use OSX thanks, not everyone wants style over substance

also this little munchkin of a virus does appear on vista, it also dies pretty quickly when you use the appropriate tools (http://www.malwarebytes.org)

Not always so easy. Normally, most software behaves itself if installed with admin rights but run under normal user rights. Some software, however, refuses to play ball unless run with admin rights all the time.

One notable example is the Chinese instant messenger client QQ, which we have tried installing several times on a Chinese colleague's machine (she actually needs it for her work, as she communicates with Chinese contacts on QQ) - but the damn thing will not run unless she is given admin rights on the machine. We eventually gave up and told her to use Yahoo.

The registry is split into user files (1 per user = HKEY_LOCAL_USER/HKEY_USERS) and machine files (HKEY_LOCAL_MACHINE and HKEY_CURRENT_CONFIG etc).

And as for ActiveX objects being enabled by "many many users" then I'd suggest only crazy people would. IE lets you enable such things by zone, so many might enable them for Intranet sites or Trusted sites, but not for Internet. Anyone sufficiently savvy to get that far would SURELY know not to enable ActiveX objects for then Internet zone.

As for installing OSX, does Safari have NO vunlnerabilities?! Are you sure?

Interesting how people still manage to try to slag off Vista when it's the one NOT affected.

Yeah NoScript is a great add-on, if you want to b0rk the web and spend the rest of your life white-listing stuff to fix it again.

It's like an over zealous firewall asking you to confirm or deny every little thing.

Lots of hassle, no real protection.

You said, "Would you expect a car manufacturer to retro-fit better locks to your car five years after you bought it because someone worked out how to pick the old ones?"

I say, "Would you not expect a car manufacturer to issue a recall if an old model was found to be inherently defective or would you be happy for them to tell you that you need to buy a new model?"

Actually I do kinda agree with what you're saying... there's no reason why MS shouldn't provide better products and charge for them accordingly - provided they also fix security issues with the older products and don't just use that as an excuse to force people to upgrade.

Contrary to the person you replied to, I think that MS will eventually provide a hotfix for this issue - their workaround is just a temporary fix until it's been tested. I don't think they would honestly expect to get away with leaving this unfixed on supported OSes such as XP.

I'm not sure, however, how long it will take them to do it. Whilst he was still at the helm, Gates seemed to have been pushing through changes to decrease the Vulnerability Window by making security fixes available sooner. But since he stepped down, there generally seems to be less priority placed on getting the hotfixes out quickly (with the exception of the 2 out-of-band patches released earlier this year).

Tux - because I wish I could download the source code and build my own car for free like I do with Linux.

"Id rather set myself on fire than use OSX thanks, not everyone wants style over substance"

...and in this instance I'd rather let you. Got the crumpets and muffins ready - over to you.

Someone else will probably beat me to it, but the files I know of that comprise the registry are:

%SYSTEMROOT%\System32\config\system, loaded into HKEY_CURRENT_CONFIG and HKEY_LOCAL_MACHINE\System

%SYSTEMROOT%\System32\config\security, loaded into HKEY_LOCAL_MACHINE\Security

%SYSTEMROOT%\System32\config\software, loaded into HKEY_LOCAL_MACHINE\Software

%USERPROFILE%\NTUSER.DAT - one per user, loaded into HKEY_CURRENT_USER and HKEY_USERS/<UserSID> when the user logs on

%USERPROFILE%\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat - one per user, loaded into HKEY_USERS/<UserSID_Classes> when the user logs on

There are also 3 "system users" that have hives that are always loaded:

LocalService, loaded into HKEY_USERS/S-1-5-19 and HKEY_USERS/S-1-5-19_Classes

NetworkService, loaded into HKEY_USERS/S-1-5-20 and HKEY_USERS/S-1-5-20_Classes

.DEFAULT, stored in %SYSTEMROOT%\System32\config\default and loaded into HKEY_USERS/.DEFAULT

FYI, HKEY_LOCAL_MACHINE\HARDWARE is a "volitile" key in that it is built by the kernel during startup, it isn't stored in a file.

This has been a public service announcement by your friendly neighborhood system deployment specialist. We return you now to your regularly scheduled flame war.

And of course I forgot %SYSTEMROOT%\system32\config\SAM, loaded into HKEY_LOCAL_MACHINE\SAM

I remember having to work hard the first time to set up a method of setting killbits with group policy. Then I found the following article:

http://msinfluentials.com/blogs/jesper/archive/2006/09/29/Set-KillBit-on-Arbitrary-ActiveX-Controls-with-Group-Policy.aspx

As soon as I had the CLASSID, it took 5 minutes to add it to group policy and protect 100+ computers.

I just hope this helps anyone else wondering how to deal with it!

"Id rather set myself on fire than use OSX thanks, not everyone wants style over substance"

Yeah - i always love weenie roasts! I got my beer! Start-her up!

This is *really* getting bothersome now.

Wish the d__n malware coders will be terminated.

The days when you didn't need a firewall or have to worry about wonky sites is long past now.

And found an exploitable weakness. Today m$ IE (that I detest) but tomorrow something else. The malware writers are in it for the money, and should not be underestimated.

However, if they put their skills to improving things for mankind, I'm sure they could achieve an awesome amount. However climate prediction and script kiddies would be like monkeys and typewriters ..... But the really gifted guys ?

Crying shame really.

I need a pint, just like Inspector Morse ... nice bit of the country in summer BTW.

And don't blame me if you hackers keep finding all those holes in your OS and browser.