Official WMF Vulnerability Patch
January 6, 2006
Microsoft has released an official patch for the Windows WMF vulnerability — a little ahead of their official schedule, and a little behind when it probably should have came out.
The patch and details are available here.
The SANS Internet Storm Center has recommendations on how to apply this update, including how to uninstall the previous unofficial patch and re-register the DLL that had the problem in the first place. Details are here.
The SANS instructions are a little complicated, since they are written for both individual users and administrators of multiple systems.
If it’s just your own machine, and you followed the instructions in the previous post, here is a simplified set of instructions for replacing the unofficial patch with the official one, and re-registering the DLL that you unregistered.
- Download the patch for your version of Windows from here and install it.
- Go to Control Panel | Add Remove Programs and remove the unofficial hotfix. It’s titled “Windows WMF Metafile Vulnerability HotFix” (there will probably also be a version number). You’ll probably be prompted to reboot afterwards; you can, or you can go on and reboot after the next step.
- Click on Start | Run and enter
“regsvr32 %windir%\\system32\\shimgvw.dll” (without the quotes)
You’ll get a little dialog telling you that registering the DLL succeeded.
- Reboot your machine (particularly if you did not do so after uninstalling the unofficial patch.)
After this, you should be good to go until the next ordeal!