Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Experts Warn of New Windows Shortcut Flaw


16 Jul 2010   #1
JMH

Win 7 Ultimate 64-bit. SP1.
 
 
Experts Warn of New Windows Shortcut Flaw

Quote:

Researchers have discovered a sophisticated new strain of malicious software that piggybacks on USB storage devices and leverages what appears to be a previously unknown security vulnerability in the way Microsoft Windows processes shortcut files.





VirusBlokAda, an anti-virus company based in Belarus, said that on June 17 its specialists found two new malware samples that were capable of infecting a fully-patched Windows 7 system if a user were to view the contents of an infected USB drive with a common file manager such as Windows Explorer.

USB-borne malware is extremely common, and most malware that propagates via USB and other removable drives traditionally has taken advantage of the Windows Autorun or Autoplay feature. But according to VirusBlokAda, this strain of malware leverages a vulnerability in the method Windows uses for handling shortcut files.
Source -
Experts Warn of New Windows Shortcut Flaw — Krebs on Security


My System SpecsSystem Spec
.

16 Jul 2010   #2

W7x64 Pro, SuSe 12.1/** W7 x64 Pro, XP MCE
 
 

I don't know about this one, but the fact that I never hear about anyone being prosecuted for creating or distributing malware, viruses, trojans, etc. makes me feel that the authors are high up in the IT community.
My System SpecsSystem Spec
19 Jul 2010   #3
JMH

Win 7 Ultimate 64-bit. SP1.
 
 
New Windows Shortcut zero-day exploit confirmed

Quote:

Reports have been circulating for a few weeks about a new attack being targeted at certain Windows users that used USB memory sticks to propagate. More details have now emerged, including confirmation from Microsoft that a new flaw exists and is being exploited.

The attack uses specially crafted shortcut (.lnk) files, which trick Windows into running code of an attacker's choosing. Any Windows application that tries to display the shortcut's icon—including Explorer—will cause exploitation, so even the mere act of browsing a directory with the malicious shortcuts is sufficient for a system to be exploited. Analysis suggests that the shortcuts are not improperly formed; rather they depend on a flaw in the way that Windows handles shortcuts to Control Panel icons.

The first reports of the problem came last month from Belorussian security company VirusBlokAda. The company found systems infected with the flaw through infected USB keys. The keys use the flaw to install a rootkit to hide the shortcuts, dubbed Stuxnet, including kernel-mode drivers, and a malicious payload. The rootkit is itself noteworthy: the drivers it installs are signed. The certificate used to sign them belongs to Realtek, suggesting that somehow the attackers have access to Realtek's private key. The certificate used to sign the rootkit has now been revoked by Verisign.
Source -
New Windows Shortcut zero-day exploit confirmed
My System SpecsSystem Spec
.


20 Jul 2010   #4

Windows 7 Ultimate X64 SP1
 
 

Quote:
Microsoft is looking into a particularly nasty family of malware, which has been labeled 'Stuxnet' by security researchers, and has been seen in the wild in India, Iran, the US and Indonesia, Microsoft said in a blog post on Friday. One of the attack vectors Stuxnet uses is via USB stick. The malware requires no user interaction to infect the system. The operating system merely rendering an icon launches the malware.
Also here: Windows systems at risk from Stuxnet attack - ZDNet
My System SpecsSystem Spec
20 Jul 2010   #5

Windows 8 Pro
 
 

Man....

It amazes me how creative these exploits are getting.
My System SpecsSystem Spec
20 Jul 2010   #6

Windows 7 Ultimate 64 - OEM Service Pack 1
 
 

What amazes me more is still the amount of people that get infected with Viruses and Malware.
My System SpecsSystem Spec
20 Jul 2010   #7

Windows 7 x64 / Same
 
 

Quote   Quote: Originally Posted by steve-pressman View Post
What amazes me more is still the amount of people that get infected with Viruses and Malware.
I'm not. I know many people who are not savvy in protecting their systems.
My System SpecsSystem Spec
Reply

 Experts Warn of New Windows Shortcut Flaw




Thread Tools




Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 10:13 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33