Topic: Important Announcement if you are running Windows

[Vekseid]

Microsoft announced a particularly stunning security vulnerability this morning. It's actually a part of the overall Hacking Team leak and has been discussed for some weeks now, and has been in the wild for some years.

For some reason I completely spaced and had assumed that this was constrained to Flash, because, well, it's Adobe.

Remote kernel mode code execution in a font library that's been a part of Windows since Windows 2000. It doesn't matter what browser you use - Internet Explorer has supported embedding Opentype fonts in its own proprietary way since 5.5, and all other browsers have supported it for many years now.

If you are running Vista or later, please run Windows Update and ensure your system is up to date.

If you are still stuck on Windows XP or 2000, you will want to upgrade or switch to a non-Windows system.

This is easily the most serious vulnerability to ever be revealed for Windows. All you have to do is visit a bad or hijacked website.

As an aside, if you have Adobe Flash installed, I would highly recommend removing it. The more people who get rid of Flash, the more websites will stop relying on it, and the less you'll miss.

Likewise, if you have Adobe Acrobat Reader installed, consider replacing it with Sumatra PDF or Foxit Reader.


Be safe, people.

Also, since not everyone is going to click the announcement, please make sure your friends and family are aware of this (here and elsewhere).

[Caitlin]

Ouch, well that explains why Windows updated last night while it usually updates on Tuesdays. I disabled Flash when I learned of the vulnarability in it, but this bug is new to me as well. Thanks for the update!

[Blythe]

Thanks for the update; I had no idea about any of this. 

Also gonna ditch Adobe Reader and pick up Sumatra while I'm at it.

[persephone325]

Not sure if it's because I'm dumb, or just tired. But I don't understand what's happening. >.<

[Stella]

Thanks for sharing. I appreciate it!

[Vekseid]

Not sure if it's because I'm dumb, or just tired. But I don't understand what's happening. >.<

The vulnerability is in the code that turns font data into the characters you see on your screen. In Windows, this code runs with absolute privilege - it has more access to your own system than you do.

Microsoft released a fix on Windows Update, but not everyone has it set to automatically reboot their machines at a whim, and not everyone who does has it working.

[Haibane]

Now I am worried. I can't run the update (I get an error when I try and run it) and Windows Update isn't running either even though I have set it to do so.

Win 7 Home Premium.

EDIT: Here's my Win Update settings - all looks fine:



But here is the problem:



Restarting the PC makes no difference.

Help! (please)

[Renegade Vile]

*Winces* Lovely.

[Fenrisulfr]

If you right click on "my computer" and pick "manage", then go to "services" and look for "Windows Update". Is it started? Is it set to "Automatic".

It has to be set to automatic to start automatically at a reboot. So any other setting will result in that error. Change it to automatic if needed.

If it is not started, try to start it and see if it is possible or if you get any error messages.

It is also worth to look in the event viewer, that you also can find through the window you started by picking manage. But I'm not sure how easy it is to understand.

[jouzinka]

Now I am worried. I can't run the update (I get an error when I try and run it) and Windows Update isn't running either even though I have set it to do so.

Win 7 Home Premium.

EDIT: Here's my Win Update settings - all looks fine:



But here is the problem:



Restarting the PC makes no difference.

Help! (please)

Restart the computer, hit F8 when it starts, select "Safe Mode with Network" and try to update in safe mode.

Alternateluy, visit www.eset.com and rn their antivirus online check, get rid of the junk, if it finds any, and try again.

[Peripherie]

Thank you Veks, I really appreciate the heads up!

I have know about the issues with Adobe flash but I do know that many things that I use also use Flash. I've tried to read up on it and apply updates when I have heard (rightly or wrongly) that it is important to do so. I'm fine with removing it but does anyone know what kinds of big things actually use it (as in, what major things am I not going to be able to do/see if I get rid of it)?

Sadly I have no way of updating the computers I use for/at work. I know they use an outdated OS and I know they use Adobe. (It is a VERY large organization and it isn't as simple as me passing along this information and I may not have the ability to update anything. Even if I do some things are restored each time I boot it up.)

[jouzinka]

http://www.transitionblog.com/4-most-amazing-alternatives-to-adobe-flash-player/

Here are some amazing alternatives to Flash.

[Vekseid]

Thank you Veks, I really appreciate the heads up!

I have know about the issues with Adobe flash but I do know that many things that I use also use Flash. I've tried to read up on it and apply updates when I have heard (rightly or wrongly) that it is important to do so. I'm fine with removing it but does anyone know what kinds of big things actually use it (as in, what major things am I not going to be able to do/see if I get rid of it)?

Sadly I have no way of updating the computers I use for/at work. I know they use an outdated OS and I know they use Adobe. (It is a VERY large organization and it isn't as simple as me passing along this information and I may not have the ability to update anything. Even if I do some things are restored each time I boot it up.)

Most major websites are moving to webm/h.264 for video and animation ('gifv'). There's even a standing request for us to do it at E here - I will see if I can get that into Elkarte (should be fairly easy).

The only major video websites that were still using flash the last time I did a survey were pornhub, youporn, redtube, etc. Everyone else uses html5 embedded video.

The big difference is older sites like Homestar Runner and Albino Blacksheep, as well as flash game sites.

[AmberStarfire]

Thanks Veks. I'll disable Flash, at least for the time being (until this is sorted out, if it can be). I have the full version of Adobe Acrobat so I'd rather not get rid of it.

[King Serperior]

Is Firefox considered a Windows program?  I am not computer-savvy, so I am now really scared.  I have already removed Flash just to be safe.  Does this mean that ALL Adobe programs have gone bad?  If so, I'll immediately remove the only other Adobe I have installed:  Adobe Reader XI

I'll be looking into the alternate options though.

[Vekseid]

Is Firefox considered a Windows program?  I am not computer-savvy, so I am now really scared.  I have already removed Flash just to be safe.  Does this mean that ALL Adobe programs have gone bad?  If so, I'll immediately remove the only other Adobe I have installed:  Adobe Reader XI

I'll be looking into the alternate options though.

If you're running Windows, it's a Windows program.

I recommend replacing Reader with one of the two programs I suggested above. Adobe Reader has had its share of vulnerabilities. My sister's machine got owned through an embedded .pdf.

Now I am worried. I can't run the update (I get an error when I try and run it) and Windows Update isn't running either even though I have set it to do so.

Win 7 Home Premium.

EDIT: Here's my Win Update settings - all looks fine:



But here is the problem:



Restarting the PC makes no difference.

Help! (please)

If you try the steps others have mentioned, you might see more insightful information/errors.

More seriously, your situation is the sort of thing I'm trying to reach out to and/or prevent. : /

[Ritsu]

Most major websites are moving to webm/h.264 for video and animation ('gifv'). There's even a standing request for us to do it at E here - I will see if I can get that into Elkarte (should be fairly easy).

The only major video websites that were still using flash the last time I did a survey were pornhub, youporn, redtube, etc. Everyone else uses html5 embedded video.

The big difference is older sites like Homestar Runner and Albino Blacksheep, as well as flash game sites.

Also Pandora Radio uses Flash.

[Geraint]

Likewise, if you have Adobe Acrobat Reader installed, consider replacing it with Sumatra PDF or Foxit Reader.

Thanks Veks for the timely warning.

I have a question about PDF readers though.  I've looked at the ones you mentioned, but have also seen the PDF-XChange Viewer mentioned prominently in reviews when I was researching them.  Was there a particular reason you didn't include it?  Should it be avoided?

Thanks

[Vekseid]

Thanks Veks for the timely warning.

I have a question about PDF readers though.  I've looked at the ones you mentioned, but have also seen the PDF-XChange Viewer mentioned prominently in reviews when I was researching them.  Was there a particular reason you didn't include it?  Should it be avoided?

Thanks

Just haven't used it myself.

Because they're not official Adobe products, sometimes one of the free readers is missing important features, so viewing newer pdfs could sometimes be a problem. I haven't had that issue in years, though.

[Angelus]

Thanks for giving several f#$%! and giving us such information. I'll definitely be using this advice to increase my computer's safety as well as my immediate fams' n' friends'. <3 <3 <3 -glompsVekwithsomuchluffs-

[Geraint]

Just haven't used it myself.

Because they're not official Adobe products, sometimes one of the free readers is missing important features, so viewing newer pdfs could sometimes be a problem. I haven't had that issue in years, though.

Thanks Veks, I appreciate the guidance.

[Wistful Dream]

Eek, this sucks, we have to use Flash at work, but at least we use Foxit (which is a great PDF reader for anyone that's curious, I use it on a daily basis and it has wonderful tools). Would this issue be affecting the Google OS at all?

[AmberStarfire]

If this is being caused in relation to/by embedded fonts, I wonder if there is any threat posed by fonts available on online font sites like Fontsquirrel.

[Inkidu]

Whoo-boy. I'm in full cleaning mode. I'm all updated and running every kind of scan I've got access to.

[Golden Spider]

The vulnerability is in the code that turns font data into the characters you see on your screen. In Windows, this code runs with absolute privilege - it has more access to your own system than you do.

Microsoft released a fix on Windows Update, but not everyone has it set to automatically reboot their machines at a whim, and not everyone who does has it working.

This explains why it wants me to upgrade again when I just did so Saturday. Thank you. If I didn't hear about this I probably would've put it off for a couple days