27 Jul 2010
Win7 Home Premium x64 SP1, Archlinux x86_64
LNK Exploit Protection Tool
Sophos has released a tool which can protect users against exploits that target a currently unpatched Windows vulnerability in the way shortcut icons are processed. The critical bug discovered earlier this month has already been adopted by a variety of malware families and that's only expected to increase.
The new vulnerability, identified as CVE-2010-2568 and confirmed by Microsoft in Security Advisory 2286198, was discovered being exploited in the wild by a highly sophisticated piece of malware earlier this month. The flaw stems from the way Windows processes control panel shortcut icons and allows an attacker to automatically execute malicious code by tricking users into opening a folder containing specially crafted LNK files.
Initially it was believed that the vulnerability could only be exploited from removable USB devices or network shares. However, Microsoft later revealed that attackers can also launch attacks leveraging it via websites or other document files.
|My System Specs || |