Link here:
http://www.securityfocus.com/brief/89
Basicly it uses files with the Windows Metafile format to infect a computer. All you have to do is view a webpage with the image on it or access an infected image on your computer. For IE users, it will infect them automatically, since IE displays the images nativly. Firefox will not display the image but will cache it, so if you mouseover/click/open the image from the cache, you will be infected.
There are reports of it downloading spyware, trojans, etc. There is no fix available from MS at this time.
Virus scanners should be updating themselves to detect this threat. NOD32 trial version already can, so if you don't have a virus scanner, get it here:
http://www.eset.com/download/trial.htm
Other things you can do are to avoid shady websites that might exploit this (although there are reports of it showing up on ebay auctions and myspace pages). Run an alternative browser, such as Firefox or Opera. Turn off programs such as Google's Desktop search, that index files on your computer. An infected WMF file just being index by such programs is enough to infect your PC. Avoid image searching. Update windows regularly. This one is bad enough that MS should patch it pretty quick - but you never know.
I apologize if this is a repost, I searched for a bit before posting this here. I know this should be in software, but OT gets WAY more traffic and people need to know about this.
Edit: Link with more info:
http://forums.anandtech.com/messageview.aspx?catid=38&threadid=1770474
http://www.securityfocus.com/brief/89
Basicly it uses files with the Windows Metafile format to infect a computer. All you have to do is view a webpage with the image on it or access an infected image on your computer. For IE users, it will infect them automatically, since IE displays the images nativly. Firefox will not display the image but will cache it, so if you mouseover/click/open the image from the cache, you will be infected.
There are reports of it downloading spyware, trojans, etc. There is no fix available from MS at this time.
Virus scanners should be updating themselves to detect this threat. NOD32 trial version already can, so if you don't have a virus scanner, get it here:
http://www.eset.com/download/trial.htm
Other things you can do are to avoid shady websites that might exploit this (although there are reports of it showing up on ebay auctions and myspace pages). Run an alternative browser, such as Firefox or Opera. Turn off programs such as Google's Desktop search, that index files on your computer. An infected WMF file just being index by such programs is enough to infect your PC. Avoid image searching. Update windows regularly. This one is bad enough that MS should patch it pretty quick - but you never know.
I apologize if this is a repost, I searched for a bit before posting this here. I know this should be in software, but OT gets WAY more traffic and people need to know about this.
Edit: Link with more info:
http://forums.anandtech.com/messageview.aspx?catid=38&threadid=1770474