Wasn't the whole malicious-code-in-picture-files thing done? Apparently not, as Microsoft released another barrage of patches on Tuesday, aimed at fixing the exploit hole in its imaging software.

Installing all the security patches that address this issue is mandatory for internet surfers, as simply viewing a web page that contains pictures embedded with the exploit will automatically infect the software - that's right, no interaction is required, watching an infected image in your browser will be enough.

Head over to Microsoft Security to download the relevant patches, and to Reuters for more information on Microsoft's press release.

Mod note: hopefully this doesnt affect us, but I'm just making it aware to you all as I do with anything I consider threatening to your pc's.............
JWBL™

off topic

but thats a fab picture of giselle

thanks....................I rarely fuck with Photoshop but I will admit when I do, I amaze even myself

she loves it too

Thanks for the head's up on the patch JWBL. BTDT.

And thanks for the glimpse of Giselle also. :claps

Another good reason to use Firefox.

Here's the AP story:

NEW YORK -- In a harbinger of security threats to come, hackers have exploited a newly announced flaw in Microsoft programs and begun circulating malicious code hidden in images that use the popular JPEG format.

Software tools to create the malicious images began appearing last month, and this week security experts saw images employing them posted on adult-oriented Usenet newsgroups.

To get the malicious code, a visitor must download the image and view it using Microsoft's Windows Explorer software, said Oliver Friedrichs, senior manager with Symantec Security Response.

The computer then contacts a server to obtain code that would let an attacker take over the machine remotely.

Friedrichs said the current exploit is fairly limited but that he expects future attempts to create malicious images that would work on the more popular Outlook and Internet Explorer programs, also made by Microsoft.

The Internet Storm Center at the SANS Institute said an image it found, disclosed on the BugTraq security mailing list, only caused computers to crash in tests, but "we suspect that a working exploit is very close to widespread availability."

Computers with updated versions of antivirus software should be protected, according to SANS. Microsoft also has a software patch to fix the flaw and said users who have the Service Pack 2 security update for Windows XP are not affected.

Microsoft disclosed the flaw in question Sept. 14. It affects people running Windows XP, Windows Server 2003 and later versions of Office.

People who have earlier versions of Windows or Office may also be affected if they are running some specialized applications, such as Digital Image Pro and Visio 2002. The flaw is in a technology that is used to render JPEG images.