Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Bug

Submission + - Microsoft Issues Rush Patch for .LNK Shortcut Bug (pcmag.com)

suraj.sun writes: Microsoft has issued an "out of band" update to all versions of Windows to fix a critical vulnerability that has been exploited in the wild for over 2 weeks.

MS 10:046: Vulnerability in Windows Shell Could Allow Remote Code Execution-- addresses the vulnerability exploited by Stuxnet and other families of malware, described first by Belorussian security firm VirusBlokAda.

For most users, the update will be automatic via Windows Update, according to Microsoft.

The vulnerability is in the Windows Shell. It can allow remote code execution if the icon of a specially crafted shortcut is displayed.

PC Magazine: http://www.pcmag.com/article2/0,2817,2367282,00.asp

Microsoft: http://www.microsoft.com/technet/security/Bulletin/MS10-046.mspx

This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Microsoft Issues Rush Patch for .LNK Shortcut Bug

Comments Filter:

IBM Advanced Systems Group -- a bunch of mindless jerks, who'll be first against the wall when the revolution comes... -- with regrets to D. Adams

Working...