Microsoft issues temporary fix for Windows zero-day vulnerability

PenTester · Nov 4, 2011

Microsoft issues temporary fix for windows zero-day vulnerability by creating "Fix this problem tool:
http://support.microsoft.com/kb/2639658#FixItForMe

ehacking

moonshine · Nov 4, 2011

Thanks for the link.

McLovin · Nov 4, 2011

Thanks for the head up PenTester

imsoadude · Nov 4, 2011

At least they sent out a temporary fix

PenTester · Nov 5, 2011

NSS Labs developed a tool that detects Duqu and available for free.

https://github.com/halsten/Duqu-detectors

bogdan · Nov 5, 2011

Already posted here but that's OK. Anyway, the workaround might interfere with the way TrueType fonts are displayed in applications, so "customers with non-English versions of Microsoft Windows should reevaluate the applicability of the revised workaround for their environment". But since Microsoft considers the vulnerability risk "Limited" no proper patch will be released next week and, as I mentioned before, now that "hackers" know that is something wrong with the T2embed.dll they might take a peek and release their own malware that takes advantage of the vulnerability.

A workaround is good but I would rather see a patch...

Search

Microsoft issues temporary fix for Windows zero-day vulnerability

PenTester

New Member

moonshine

Level 7

McLovin

Level 78

imsoadude

Level 3

PenTester

New Member

bogdan

Level 1

Similar threads