InfoSec Handlers Diary Blog - Microsoft Out-of-Band bulletin addresses LNK/Shortcut vulnerability

SANS ISC: InfoSec Handlers Diary Blog - Microsoft Out-of-Band bulletin addresses LNK/Shortcut vulnerability

SANS Site Network
- Current Site
- Internet Storm Center
- Other SANS Sites Help
- Graduate Degree Programs
- Security Training
- Security Certification
- Security Awareness Training
- Penetration Testing
- Industrial Control Systems
- Cyber Defense Foundations
- DFIR
- Software Security
- Government OnSite Training

InfoSec Handlers Diary Blog

Microsoft Out-of-Band bulletin addresses LNK/Shortcut vulnerability

Published: 2010-08-02
Last Updated: 2010-08-12 18:43:36 UTC
by Johannes Ullrich (Version: 1)

As announced on Friday, Microsoft released an out-of-band bulletin to address the recent Shortcut/LNK exploits. As confirmed in Microsoft's announcement, various malware is now attempting to exploit this vulnerability. The vulnerability is rather easy to exploit in particular given the tools available to craft necessary shortcuts.

Clients are the main target but servers are as vulnerable and should be patched as soon as possible. Please report any issues you have with the patch !

#	Affected	Contra Indications	Known Exploits	Microsoft rating	ISC rating(*)
#	Affected	Contra Indications	Known Exploits	Microsoft rating	clients	servers
MS10-046	Vulnerability in Windows Shell (LNK/Shortcut)
MS10-046	Windows Shell CVE-2010-2568	KB 2286198	actively exploited.	Severity:Critical Exploitability: 1	PATCH NOW!	PATCH NOW!

-----
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter

Keywords: Microsoft patches

15 comment(s)

Join us at SANS! SANS SEC401: Security Essentials Bootcamp Style. Learn the most effective steps to prevent attacks and detect adversaries with actionable techniques that you can directly apply when you get back to work.

Top of page

Diary Archives