Patch for ANI Cursor Vulnerability
Updated on 18 Jul 2011
By Anthony Buckner
By Anthony Buckner
961 KB Safe To Install
Advertising
Specifications
License:
Freeware (Free)
Updated:
Downloads:
537
Platform:
Windows 2K / XP / 2003 / Vista
Publisher:
eEye Digital Security(more)
Website:
Unknown
User Reviews:
Other versions:
Do you like
Patch for ANI Cursor Vulnerability?
Patch for ANI Cursor Vulnerability?
Publisher's Descriptions
An unspecified vulnerability exists within Microsoft Windows which may possibly allow for a remote attacker to execute arbitrary code under the context of the logged in user.
This vulnerability requires user interaction by viewing a malicious Windows animated cursor (.ANI) file. .ANI files are commonly used by web developers to display custom cursor animations to enhance web-site experiences.
The most potent attack method is by embedding a malicious .ANI file within an HTML web page. Doing so allows the vulnerability to be exploited with minimal user interaction by simply coaxing a user to follow a hyperlink and visit a malicious web site. Other exploit vectors exist including Microsoft Office applications since they also rely on the same .ANI processing code, making e-mail delivery also a potent threat by using Microsoft Office attachments.
Since .ANI processing is performed by USER32.dll and not the attack vector application itself, all attack vectors have the potential to use a similar exploit with similar address offsets targeted at Windows directly, allowing for a very reliable exploit.
Users who install this patch should note:
· This patch is a temporary fix and should be removed before the official Microsoft patch is installed.
· It is recommended that users test this patch thoroughly before installing.
· This patch only supports Windows 2000, Windows XP, Windows Server 2003, and Windows Vista.
· This patch will not work on x64 or Itanium architectures.
· To install silently run this command:
WindowsAnimationPatchSetup.exe /qn
· To uninstall silently run this command:
msiexec /qn /x {DFEF2523-72D0-483F-A1C2-FC29B71B166A}
· This patch includes a checker that will uninstall itself when it detects a Microsoft patch has been installed. To disable the checker, run the installation with this command line (command is case-sensitive): WindowsAnimationPatchSetup.exe NOCHECKER=1
This vulnerability requires user interaction by viewing a malicious Windows animated cursor (.ANI) file. .ANI files are commonly used by web developers to display custom cursor animations to enhance web-site experiences.
The most potent attack method is by embedding a malicious .ANI file within an HTML web page. Doing so allows the vulnerability to be exploited with minimal user interaction by simply coaxing a user to follow a hyperlink and visit a malicious web site. Other exploit vectors exist including Microsoft Office applications since they also rely on the same .ANI processing code, making e-mail delivery also a potent threat by using Microsoft Office attachments.
Since .ANI processing is performed by USER32.dll and not the attack vector application itself, all attack vectors have the potential to use a similar exploit with similar address offsets targeted at Windows directly, allowing for a very reliable exploit.
Users who install this patch should note:
· This patch is a temporary fix and should be removed before the official Microsoft patch is installed.
· It is recommended that users test this patch thoroughly before installing.
· This patch only supports Windows 2000, Windows XP, Windows Server 2003, and Windows Vista.
· This patch will not work on x64 or Itanium architectures.
· To install silently run this command:
WindowsAnimationPatchSetup.exe /qn
· To uninstall silently run this command:
msiexec /qn /x {DFEF2523-72D0-483F-A1C2-FC29B71B166A}
· This patch includes a checker that will uninstall itself when it detects a Microsoft patch has been installed. To disable the checker, run the installation with this command line (command is case-sensitive): WindowsAnimationPatchSetup.exe NOCHECKER=1
Do you like Patch for ANI Cursor Vulnerability
Patch for ANI Cursor Vulnerability Disclamer
Please be aware FindMySoft.com accepts no responsibility for the file you are downloading. The same applies to the information provided about the software products listed.
We do not allow the inclusion of any Patch for ANI Cursor Vulnerability serial, keygen or crack and we disclaim any liability for the inappropriate use of Patch for ANI Cursor Vulnerability.
FindMySoft advises that Patch for ANI Cursor Vulnerability should be only used in accordance with the rules of intellectual property and the existing Criminal Code.
For your own protection ALWAYS check downloaded files for viruses.
We do not allow the inclusion of any Patch for ANI Cursor Vulnerability serial, keygen or crack and we disclaim any liability for the inappropriate use of Patch for ANI Cursor Vulnerability.
FindMySoft advises that Patch for ANI Cursor Vulnerability should be only used in accordance with the rules of intellectual property and the existing Criminal Code.
For your own protection ALWAYS check downloaded files for viruses.
Advertising
Popular News
The free AboutOne app is currently exclusive to Windows Phone. The app is available for free in the Markeplace.
Google rolled out Chrome 19 to the Stable Channel. This version fixes some security problems and adds tab syncing capabilities.
Your Rating
3.3
out
of
5
of
5
Rated By
6 Users
6 Users
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP Home29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Patch for ANI Cursor Vulnerability
HTML Linking Code
HTML Linking Code
Latest Reviews