Wiz Feinberg
From:
Mid-Michigan, USA
|
Posted 30 Jul 2010 2:07 pm |
|
Updated August 3, 2010
Microsoft has issued an emergency patch for the critical Windows shortcut bug on Monday, Aug. 2, 2010. All versions of Windows, from 2000 to 7, including server editions are affected. The vulnerability requires no user interaction for a successful exploitation and complete takeover of the machine. This rates the vulnerability as Critical, in MS parlance.
Please use Windows Updates to obtain this critical patch, now! Exploits for the .LNK vulnerability are abounding in the wild!
If you have applied the icon display Fix, using the Fix It tool, undo the fix after applying the official patch. The undo file is on the same page as the Fix It tool. The fix results in no icons being displayed in desktop shortcuts.
Furthermore, if you also disabled the WebClient Service, or set it to manual, to protect against WebDav exploits, you should investigate whether is is necessary to re-enable that service. If any programs on your PC require WebDav, they will fail with the WebClient Service disabled.
After applying the patch you can safely (for now) turn on the WebClient Service.
_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog |
|
