MS Graphics vulnerability leads to Remote Code Execution

By: | Tags: | Comments: 0

MS Graphics vulnerability leads to Remote Code Execution

MS Graphics is a vulnerability that leads to remote code execution if the user views content that contains specially crafted TIFF files. This vulnerability is known to effect all versions of Microsoft Lync, Windows Vista, Windows Server 2008, Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office Compatibility Pack, and Microsoft Office viewers.

The most appropriate way to addresse this vulnerability is by correcting the way the affected software handles TIFF files. Microsoft has released a FixIt, a temporary workaround to address the issue, if you have a vulnerable software apply FixIt immediately.

Microsoft FixIt is an application that scans Windows PC’s for problems and fixes them. It will download the latest solutions from Microsoft, and covers all aspects from crashes to performanceaudio to hardware and devices. The only drawback of this application is that it is still in beta phase.

Due to its automated care system FixIt is very convenient for non-technical people.

Caution Web developers, graphic designers and marketing professionals!

This vulnerability may hinder web developers, graphic designers, and marketing professionals who work with TIFF format.

Outsource Online and Consulting (OOAC) is an Ashland VA based information technology company provides ‘24×7’ reliable support to our clients. We are partnered with Microsoft, Oracle and RedHat and offers best practice methodology on software deployments. OOAC is proud to report our customer retention rate is at 100%. We suggest companies request for a no-obligation quote from us on network, system administration, database and security areas and discover increased ROI and quality of service.

References:

https://technet.microsoft.com

http://securitywatch.pcmag.com