According to Websense, the bug found in Microsoft’s Access Snapshot Viewer last month is now actively being exploited; probably because is it very easy to exploit and example code was posted last week.

There is no patch yet, so the advice is to set the kill bit for the following ID’s:

  • F0E42D50-368C-11D0-AD81-00A0C90DC8D9
  • F0E42D60-368C-11D0-AD81-00A0C90DC8D9
  • F2175210-368C-11D0-AD81-00A0C90DC8D9
Microsoft explains how to set the kill bit on this page