Microsoft issues workaround for latest Internet Explorer 0-day exploit



September 19th, 2006

UPDATE: Microsoft's Internet Explorer 7 is not vulnerable to this flaw.

Additionally, hardware enforced DEP also protects users against this vulnerability.  Shame it's not enabled by default.

--------------------------------------------------------------

Microsoft has issued a workaround for latest 0-day exploit for Internet Explorer.  This workaround will disable [tag]VML[/tag] rendering but most users won't really notice this.

The workaround involves unregistering a DLL file called [tag]vgx.dll[/tag] (to do this you need admin privileges).

  • Click Start, click Run, type regsvr32 -u "%ProgramFiles%\Common Files\Microsoft Shared\VGX\vgx.dll", and then click OK.

    For foreign versions of Windows use the following command: regsvr32 -u "%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll"

Undoing this change is simple and only requires you to re-register vgx.dll.

  • Click Start, click Run, type regsvr32 "%ProgramFiles%\Common Files\Microsoft Shared\VGX\vgx.dll", and then click OK.

    For foreign versions of Windows use the following command: regsvr32 "%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll"

This should be safe to do once a patch is released.

This entry was posted on Tuesday, September 19th, 2006 at 21:20 and is filed under Stay Secure. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

5 Responses to “Microsoft issues workaround for latest Internet Explorer 0-day exploit”

  1. 0-day exploit being used against Internet Explorer (what a surprise) » The PC Doctor Says:

    [...] More information and the official Microsoft workaround is available here. [...]

  2. Disabling JavaScript not a valid mitigation for VML exploit » The PC Doctor Says:

    [...] Protect yourself by unregistering the vgx.dll file. Technorati Tags: VML exploit, vgx.dllShare and Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages. [...]

  3. Which antivirus companies protect you against the VML exploit? » The PC Doctor Says:

    [...] For details on how to protect yourself against this nasty, take a look at this post. Technorati Tags: VMLShare and Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages. [...]

  4. Possible fix if the ZERT VML patch fails » The PC Doctor Says:

    [...] I've been playing with the ZERT VML patch and I think I've found a workaround for anyone having problems patching the vgx.dll file - and that's to unregister the DLL, run the patch and then reregister it.  This solution seems to offer the best of both worlds. [...]

  5. Fake ecard hides VML exploit » The PC Doctor Says:

    [...] Apply the Microsoft workaround or install the unofficial patch (or be very careful). Share and Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages. [...]