WMF vulnerability checker
The same person that has given the New Year’s gift of an unofficial patch for the WMF exploit circulating has also provided a WMF vulnerability checker, download and install, it will tell if you’re vulnerable. Post is available here. According to the first comment it seems as though the vulnerability checker is triggering Norton’s auto-protect. (Norton detects it as “Bloodhound.Exploit.56”). (Which is a good sign…)
Ultimately to test if the system is vulnerable it’s trying to exploit the vulnerability (benignly, but as a test.) It’s good to see antivirus detection starting to catch up. I wonder if there would be such success against the second family of exploits on this ?(the ones with varying signatures.)