Microsoft issues workaround for latest Internet Explorer 0-day exploit



September 19th, 2006

UPDATE: Microsoft's Internet Explorer 7 is not vulnerable to this flaw.

Additionally, hardware enforced DEP also protects users against this vulnerability.  Shame it's not enabled by default.

--------------------------------------------------------------

Microsoft has issued a workaround for latest 0-day exploit for Internet Explorer.  This workaround will disable VML rendering but most users won't really notice this.

The workaround involves unregistering a DLL file called vgx.dll (to do this you need admin privileges).

  • Click Start, click Run, type regsvr32 -u "%ProgramFiles%\Common Files\Microsoft Shared\VGX\vgx.dll", and then click OK.

    For foreign versions of Windows use the following command: regsvr32 -u "%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll"

Undoing this change is simple and only requires you to re-register vgx.dll.

  • Click Start, click Run, type regsvr32 "%ProgramFiles%\Common Files\Microsoft Shared\VGX\vgx.dll", and then click OK.

    For foreign versions of Windows use the following command: regsvr32 "%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll"

This should be safe to do once a patch is released.

Technorati Tags: ,

This entry was posted on Tuesday, September 19th, 2006 at 21:20 and is filed under Stay Secure. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.

5 Responses to “Microsoft issues workaround for latest Internet Explorer 0-day exploit”

  1. 0-day exploit being used against Internet Explorer (what a surprise) » The PC Doctor Says:

    [...] More information and the official Microsoft workaround is available here. [...]

  2. Disabling JavaScript not a valid mitigation for VML exploit » The PC Doctor Says:

    [...] Protect yourself by unregistering the vgx.dll file. Technorati Tags: VML exploit, vgx.dllShare and Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages. [...]

  3. Which antivirus companies protect you against the VML exploit? » The PC Doctor Says:

    [...] For details on how to protect yourself against this nasty, take a look at this post. Technorati Tags: VMLShare and Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages. [...]

  4. Possible fix if the ZERT VML patch fails » The PC Doctor Says:

    [...] I've been playing with the ZERT VML patch and I think I've found a workaround for anyone having problems patching the vgx.dll file - and that's to unregister the DLL, run the patch and then reregister it.  This solution seems to offer the best of both worlds. [...]

  5. Fake ecard hides VML exploit » The PC Doctor Says:

    [...] Apply the Microsoft workaround or install the unofficial patch (or be very careful). Share and Enjoy:These icons link to social bookmarking sites where readers can share and discover new web pages. [...]