Workaround needed for IE hole

Brian livingston By Brian Livingston

Microsoft acknowledged this week a new weakness that allows hacked Web sites to infect PCs merely by displaying specific images in the Internet Explorer browser.

The Redmond company hasn’t promised to issue a patch until the company’s next regular Patch Tuesday on Oct. 10, although it’s possible that a patch might come out earlier.

Until then, individual Windows users can protect themselves against the flaw by deregistering vgx.dll. This DLL file is used by IE to render images that are based on Vector Markup Language (VML).

Microsoft recommends that users click Start, Run, paste the following line into the input box, and click OK:

regsvr32 -u “%ProgramFiles%Common FilesMicrosoft SharedVGXvgx.dll”

This article is part of our premium content. Join Now.

Already a paid subscriber? Click here to login.

= Paid content

All Windows Secrets articles posted on 2006-09-22: