Workarounds for .LNK Exploits
The recently discovered .LNK vulnerability in Windows is apparently far more severe than originally reported. Research conducted by HD Moore, CSO of Rapid7 and Chief Architect of Metasploit, reveals that the flaw is also exploitable via the Web and via malformed Word doc files. Unfortunately, there are few options available to users until Microsoft releases a patch.
Currently, the two options that are available include disabling the rendering of shortcut icons altogether using the Microsoft FixIt tool or manually editing the registry. The second option is a free tool complements of Sophos. The Sophos Windows Shortcut Exploit Protection Tool intercepts shortcut files that contain the exploit and issues a warning.
Neither method is perfect but, if you’re a Windows user, either is better than doing nothing.
Workarounds for .LNK Exploits originally appeared on About.com Antivirus Software on Tuesday, July 27th, 2010 at 00:12:46.
Permalink | Comment | Email this
View full post on About.com Antivirus Software
July 27th, 2010 at 9:25 am
[...] on July 27, 2010 by ciprianpt Check out new post about Workarounds for .LNK Exploits http://www.softwarepeer.com/antivirus/workarounds-for-lnk-exploits/ here This entry was posted in Uncategorized. Bookmark the permalink. ← [...]