Security news
Security news23 September 2004
JPEG security problem - are you patched? Sophos advises customers to protect their computer systems
 |
| Microsoft issued security patches and advice about the problem on 14 September 2004 |
Following the publishing on the internet of "proof of concept" code that exploits a security vulnerability associated with JPEG image files, Sophos recommends customers ensure their computers are patched and protected.
The security hole could be exploited by hackers or a future internet worm. Already "proof-of-concept" code has been published on the internet exploiting the vulnerability.
Microsoft first published a technical bulletin about the problem on 14 September 2004, including links to security patches.
"This vulnerability is serious - everyone should ensure their systems are properly protected before someone tries to exploit the vulnerability with malicious intent," said Graham Cluley, senior technology consultant for Sophos.
Sophos recommends that every IT manager responsible for security should consider subscribing to vulnerability mailing lists such as that operated by Microsoft at www.microsoft.com/technet/security/bulletin/notify.mspx.
"Home users should consider checking out the services Microsoft offers at windowsupdate.microsoft.com, which can scan your home PC for security vulnerabilities and suggest which critical patches need to be installed," continued Cluley.
Sophos continues to recommend computer users practise safe computing as well as running up-to-date anti-virus software.
