Members
  • Total Members: 12814
  • Latest: Rono
Stats
  • Total Posts: 28518
  • Total Topics: 8240
  • Online Today: 976
  • Online Ever: 51419
  • (01. January 2010., 10:27:49)












Author Topic: Microsoft offer temporary "Fixit" for critical Windows Shell vulnerability  (Read 2504 times)

0 Members and 1 Guest are viewing this topic.

Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum


Microsoft released a temporary "Fixit" workaround on Tuesday, to protect Windows users against a  critical unpatched Windows Shell vulnerability: http://scforum.info/index.php/topic,4366.0.html

Microsoft issued a security bulletin on Friday to warn customers of a 0-day exploit involving the Windows Shell. The vulnerability is caused due to an error in Windows Shell when parsing shortcuts (.lnk). The flaw can be exploited automatically by executing a program via a specially crafted shortcut. Certain parameters of the .lnk are not properly validated on load, resulting in the vulnerability. Microsoft says it has "seen only limited, targeted attacks on this vulnerability."

On Tuesday the software giant issued a Fixit solution for customers, to help prevent attacks attempting to exploit this vulnerability: http://support.microsoft.com/kb/2286198
Applying the fixit will remove the graphical representation of icons on the Task bar and Start menu bar and replace them with white icons without the graphical representation of the icon.

 For the exploit to be successful it requires that users insert removable media (when AutoPlay is enabled) or browse to the removable media (when AutoPlay is disabled). According to Microsoft's advisory, exploitation may also be possible via network shares and WebDAV shares. Microsoft states that the exploit affects all Windows versions since Windows XP, including Windows 7. However, unsupported versions of Windows 2000 and Windows XP SP2 are also affected by the flaw. Applying Microsoft's Fixit will prevent the vulnerability from being exploited.

Microsoft is still investigating reports of limited, targeted attacks. The company's next patch Tuesday isn't scheduled until August 10 but an out of band security update has not been ruled out.

(NW)

Samker's Computer Forum - SCforum.info





Steve_53

  • SCF Member
  • **
  • Posts: 15
  • KARMA: 9
  • Gender: Male
"Fixit"?

Are you kidding me? What kind of fix is disabling all of the task bar and start menu links? I'm surprised that they didn't just suggest you just shut the computer off and wait 'till next week?
No trees were harmed in the creation of this post, but a significant number of electrons were highly inconvienenced.

Samker

  • SCF Administrator
  • *****
  • Posts: 7206
  • KARMA: 291
  • Gender: Male
  • Whatever doesn't kill us makes us stronger.
    • SCforum.info - Samker's Computer Forum
"Fixit"?

Are you kidding me? What kind of fix is disabling all of the task bar and start menu links? I'm surprised that they didn't just suggest you just shut the computer off and wait 'till next week?

Another "surprise" from Microsoft.  :down:

mercenary

  • SCF Member
  • **
  • Posts: 27
  • KARMA: 3
The patch is out now...  That was quick!  thanks MS...

http://www.microsoft.com/technet/security/bulletin/ms10-aug.mspx

 

With Quick-Reply you can write a post when viewing a topic without loading a new page. You can still use bulletin board code and smileys as you would in a normal post.

Name: Email:
Verification:
Type the letters shown in the picture
Listen to the letters / Request another image
Type the letters shown in the picture:
Second Anti-Bot trap, type or simply copy-paste below (only the red letters):www.scforum.info:

Enter your email address to receive daily email with 'SCforum.info - Samker's Computer Forum' newest content:

Terms of Use | Privacy Policy | Advertising