Oh no, not again.
July 22, 2010 8:52 PM Subscribe
posted by crunchland (84 comments total)
9 users marked this as a favorite
Computer security experts have recently discovered vulnerability/design flaw with Microsoft Windows that has been part of their operating system that effects all versions of Windows since Windows 2000, including XP, Vista, and Windows 7. (1
"The vulnerability exists because Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the icon of a specially crafted shortcut is displayed. This vulnerability can be exploited locally through a malicious USB drive, or remotely via network shares and WebDAV. An exploit can also be included in specific document types that support embedded shortcuts."
Microsoft is working on a permanent fix for it but there has been no firm timeline for its release. In the meantime, they're recommending several temporary workarounds
, one of which involves turning off icons for shortcuts.
On the other hand ... "While attacks using this do seem to be sophisticated, they are at present very limited in nature. Looks like someone crafted this attack for a specific job. The good news from that is that this vulnerability isn’t in wide circulation. So while it could be loaded onto a USB flash drive or CD, or even leveraged remotely via network shares and WebDAV, the chances of you being affected by this vulnerability is as close to zero as to be zero. On top of that, by now most of the top antivirus providers will have updated their signature files in order to be able to detect and defend against this nasty. ... So, should you be worried? No." Adrian Kingsley-Hughes
If that doesn't put your mind at ease, there's always this