On November 5, 2013, Microsoft release a critical advisory warning customers of a vulnerability regarding TIFF images.
Basically it has to do with how versions of Windows, Office and Lync handle TIFF images. If you are lured into viewing a malicious image, including ones that are already embedded into Office documents, code can be executed on your computer that would allow the attacker to gain control of your computer.
Mostly these images have been arriving as malicious Word documents that have an embedded TIFF in them. They would probably be sent to you in an email.
Microsoft is working on a patch for this. However, in the meantime, they have released a FixIt which you can apply. While a FixIt is not considered a full patch, it is helpful. When bulletins arrive like this, we can easily block TIFF images for you if you had a Watchguard Firewall. To find out more about Watchguard Firewalls, please give us a call at Glasser Tech at 516-762-0155.
No comments:
Post a Comment