Microsoft has released some updated guidance on the DLL-hijacking bug, including a new FixIt tool that enables the workaround for the vulnerability that Microsoft shipped late last month. The new guidance includes a detailed explanation of the bug itself as well as how potential attacks would work and what users can do to protect themselves. The company warns that there could be unforeseen issues, so users should test the fix before deploying it. The fix was turned off by default, but Microsoft has now published a new tool that will automatically enable it.
Source: https://threatpost.com/microsoft-publishes-new-fixit-tool-dll-bug-090110/74409/

