It never ends, doesn't it?
Quote:
SUNNYVALE, Calif. ? Microsoft has issued an advisory for the vulnerability affecting all current versions of Windows, including the recently released service pack one of Windows 7 and Windows server 2008 R2.
PCMag reports the bug comes from Windows improperly handling shortcut (.LNK) files executed through the shell, typically Windows Explorer.
When the user launches such a shortcut through the associated icon, Windows fails to properly validate the parameters of the shortcut and malicious code in the .LNK may be executed.
The attack would typically be performed through removable drives, like USB thumb drives of CD-ROMs.
|
Read the entire article
here.