In case you haven’t seen it yet, read-up on this 0-day exploit and MS’s analysis here.
Mitigating Factors:

• The Microsoft DDS Library Shape Control (Msdds.dll) does not ship in Windows.
  
• The Microsoft DDS Library Shape Control (Msdds.dll) does not ship in the .NET Framework.
  
• Customers who do not have Msdds.dll on their systems are not affected by this vulnerability.
  
• The affected versions of Msdds.dll are 7.0.9064.9112 and 7.0.9446.0. Customers who have Msdds.dll with version 7.0.9955.0, 7.10.3077.0, or higher on their systems are not affected by this vulnerability.
  
• Customers who use Microsoft Office 2003 are not affected by this vulnerability.
  
• Customers who use Microsoft Access 2003 are not affected by this vulnerability.
  
• Customers who use Microsoft Office XP Service Pack 3 are not by default affected by this vulnerability. See Frequently Asked Question “I am running Microsoft Office XP Service Pack 3, am I affected by this vulnerability?” for additional details.
  
• Customers who use Microsoft Access 2002 Service Pack 3 are not by default affected by this vulnerability. See Frequently Asked Question “I am running Microsoft Office XP Service Pack 3, am I affected by this vulnerability?” for additional details.
  
• Customers who use Microsoft Visual Studio 2003 are not affected by this vulnerability.
  
• Customers who use Microsoft Visual Studio 2002 Service Pack 1 are not affected by this vulnerability.

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!