Proactive IT Security
Critical vulnerability in Windows Graphics Rendering Engine - no available update
2011-01-05: Advisory first published
2011-01-20: Advisory updated
A critical vulnerability has been identified in Windows Graphics Rendering Engine. If successfully exploited the vulnerability could allow remote code execution.
There is currently no relevant security update.
More details in Microsoft's Security Advisory.
Norman will update this web page when more information is available.
Update 2011-01-20
Microsoft has updated its security advisory with information about the fact that the previously published fixit solution only applies for Windows XP and Windows Server 2003.
Information about a new workaround for Windows Vista and Windows Server 2008 is published in Microsoft's updated advisory.
