On Friday both Microsoft and Google published an advisory regarding limited, targeted attacks. The exploit takes advantage of a loophole in Windows MHTML [MIME(Multipurpose Internet Mail Extensions) HTML], which is a format used to combine web page contents into a single file. Microsoft released a fix that locks down MHTML to prevent abuse, but it’s only a temporary solution. If you are worried about being hacked though, you could apply it while we wait for a real patch.
How to Lock Down MHTML in Windows
Step 1
Visit the Microsoft Support Website and download the fix. On the website it will be labled as Enable, To lock down MHTML.
Step 2
Run the downloaded msi file, then continue with the rather self-explanatory installer. The setup process will take roughly 3 minutes.
Done!
Now your system should be protected from any MHTML exploits.
Leave a Reply
