Barney's Blog

Blog archive

DLL Flaw Fixed with 'Fix It'

The recently reported dynamic link library (DLL) flaw that affects apps, from Office to IE, is now more easily fixed. A workaround has been out for a bit. Now Microsoft is making it easer to install the fix through a new 'Fix it,' which is supposed to be a one-click affair -- that is, once you first download and install the update.  

The fix prevents rogue DLLs, or those that don't point to a specific path, from being hijacked and pointed to malware.

The flaw is blamed on poorly written apps. If so, Microsoft's software also has been subject to this flaw.

In any case, I'm grateful for a quick and easy solution to this problem.

Posted by Doug Barney on 09/01/2010 at 10:31 AM


Reader Comments:

Wed, Sep 1, 2010 Darryl J. Robers http://itprofessionalservices.net

It's not quite as easy as downloading and installing the FixIt from http://support.microsoft.com/kb/2264107. The article says "Before you run the fix it solution, you must first download and then install update 2264107".

The fix is a two step process. First install the patch in KB 2264107. That patch adds the ability to remove the Current Working Directory (CWD) from the DLL search path, but the protection is not enabled by default. Second is to set a value in the registry to enable removing the CDW from the DLL search path. It appears that the FixIx automates the change to the registry, that is, the second step necessary to enable protection.

There is a "got ya" in enabling removing the CDW from the DLL search path. It could break some applications. So, the fix is not as simple as a two step process, because testing of applications and mitigation for those that break is probably also necessary.

Add Your Comment Now:

Your Name:(optional)
Your Email:(optional)
Your Location:(optional)
Comment:
Please type the letters/numbers you see above

> More

> More

> More Tech Library