In 10 minutes I have a meeting with the "Patch Management Committee" to discuss the plan for the Microsoft Windows Metafile (WMF) vulnerability. There is an "unoffical" patch that is out that some experts are saying to deploy to enterprise environments and I'm very suprised by this. I work for a bank so I can't image any practice like that is acceptable yet (probably) something should be done in the mean time.
There is a "work-around" to disable the WMF availability by unregistering the dll. I think deploying a package that would disable this DLL for now would be a more acceptable route. Would you all agree? Sorry for that last minute post as I just found out I'm getting pulled into this meeting.
If nothing else this thread will be a good follow up for me on my own time and for the future, as well as being able to post back into after the meeting.
(4,000 user environment XP w SP1/SP2 mixed)
There is a "work-around" to disable the WMF availability by unregistering the dll. I think deploying a package that would disable this DLL for now would be a more acceptable route. Would you all agree? Sorry for that last minute post as I just found out I'm getting pulled into this meeting.
If nothing else this thread will be a good follow up for me on my own time and for the future, as well as being able to post back into after the meeting.
(4,000 user environment XP w SP1/SP2 mixed)