Saturday, March 31, 2007

ANI vulnerability 3rd party patch available

A 3rd party patch to mitigate exposure to the ANI vulnerability (mouse animated curser) is available free to the public.

I have been testing it this evening and it appears to be effective and safe.

If you run any browser or email client on the Windows 2000, XP, 2003 or Vista platform, you might consider this patch until Microsoft releases their official patch.

http://research.eeye.com/html/alerts/zeroday/20070328.html

The link to the patch is at the very bottom of that page.