Patch Released for Microsoft Windows Shell Vulnerability
GSA Reference Number: AD100802-01
Related GSA Reference Number: AD100719-01
Simply Put: Microsoft has released an advisory for a code execution vulnerability in Microsoft Windows Shell. This vulnerability affects Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, and Windows 7. This vulnerability can be exploited if a user opens a USB device or network share with a malicious-crafted shortcut file (.lnk). Microsoft has also been alerted to attacks using this exploit code. Gladiator recommends that users apply the patch provided by Microsoft as soon as possible.
Attack Details: There is a vulnerability in the Windows Shell (i.e., Windows Explorer) that allows code execution when browsing folders containing maliciously-crafted .lnk files. Autorun or AutoPlay do not have to be enabled to be vulnerable to this issue. This vulnerability will most likely be exploited through USB drives or network shares. This vulnerability affects versions of Windows which are no longer supported by Microsoft, including Windows 2000 and Windows XP Service Pack 2. Patches will not be issued for unsupported operating systems. Note: Windows XP Service Pack 3 is supported.
Countermeasures: Microsoft has released an out-of-band patch for this vulnerability. Gladiator recommends that users apply this patch as soon as possible.
Reference Links:
- Microsoft Security Bulletin MS10-046 (http://www.microsoft.com/technet/security/bulletin/ms10-046.mspx?pubDate=2010-08-02)
- SANS ISC Diary (http://isc.sans.edu/diary.html?storyid=9313)