InfoSec Handlers Diary Blog - Microsoft Out-of-Band bulletin addresses LNK/Shortcut vulnerability

SANS ISC: InfoSec Handlers Diary Blog - Microsoft Out-of-Band bulletin addresses LNK/Shortcut vulnerability

SANS Site Network
- Current Site
- Internet Storm Center
- Other SANS Sites Help
- Graduate Degree Programs
- Security Training
- Security Certification
- Security Awareness Training
- Penetration Testing
- Industrial Control Systems
- Cyber Defense Foundations
- DFIR
- Software Security
- Government OnSite Training

InfoSec Handlers Diary Blog

Microsoft Out-of-Band bulletin addresses LNK/Shortcut vulnerability

Published: 2010-08-02
Last Updated: 2010-08-12 18:43:36 UTC
by Johannes Ullrich (Version: 1)

As announced on Friday, Microsoft released an out-of-band bulletin to address the recent Shortcut/LNK exploits. As confirmed in Microsoft's announcement, various malware is now attempting to exploit this vulnerability. The vulnerability is rather easy to exploit in particular given the tools available to craft necessary shortcuts.

Clients are the main target but servers are as vulnerable and should be patched as soon as possible. Please report any issues you have with the patch !

#	Affected	Contra Indications	Known Exploits	Microsoft rating	ISC rating(*)
#	Affected	Contra Indications	Known Exploits	Microsoft rating	clients	servers
MS10-046	Vulnerability in Windows Shell (LNK/Shortcut)
MS10-046	Windows Shell CVE-2010-2568	KB 2286198	actively exploited.	Severity:Critical Exploitability: 1	PATCH NOW!	PATCH NOW!

-----
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter

Keywords: Microsoft patches

15 comment(s)

Join us at SANS! SANS SEC546: IPv6 Security Essentials. Implementing IPv6 should not happen without carefully considering the security impact of the new protocol. Learn what you need to know!

Top of page

Diary Archives