Business IT - Technology for your business

No. 1 Story

Online group buying market surges to near $500b and growing

Online group buying has taken off in a big way in the Australian market, with the market now worth nearly nearly half a billion dollars and significant growth predicted over the next 12 months and beyond. read more

StumbleUponSubmit to redditShare this on TwitterShare on facebook | Print |PDF 

More From

Microsoft's Fix It for Stuxnet vulnerability

Stephen Withers
Thursday, 22 July 2010 10:33

Business IT - Security

Page 1 of 2

Microsoft has released a temporary fix for a Windows Shell vulnerability that is being exploited by the Stuxnet malware.


Microsoft Office 365 Get your free Trial

Related Articles

Earlier this month, Microsoft warned of real-world attacks exploiting a vulnerability in Windows Shell that allowed the execution of code during the display of a maliciously crafted shortcut's icon.

The issue can be exploited via USB drives, network shares, and WebDAV. It does not use the AutoPlay feature.

Microsoft has suggested three workarounds while a permanent fix was being developed: a registry change that disables the display of shortcut icons, disabling the WebClient service, and using a network firewall or similar to block the download of LNK and PIF files from the Internet.

The vulnerability is being exploited in conjunction with the Stuxnet malware, which is now blocked by most, if not all, security products.

Microsoft has now released an automated 'Fix It' to suppress the display of shortcut icons. The Fix It works on Windows XP, Vista, Windows 7, Server 2003, and Server 2008.

The Fix It is not without its problems - see page 2.



Start 1 2 Next 

Sponsored Announcements

Eaton’s Innovative Rack Power Distribution Solutions Offer High-Accuracy Power Monitoring and Management at the Individual Outlet Level

David Bass | Diversified industrial manufacturer Eaton Corporation has today launched a new set of enclosure power distribution units, ePDUs, that prov…

You may have missed


Advertisement

- sponsored feature -

The Death of Traditional BI: What’s Next?

How to Make Business Discovery Work for Your Business IP PABX BUYING GUIDE

Business Discovery takes its cues from consumer apps. Like Google, it encourages us- ers to hunt for and explore data without worrying about or even noticing the underly- ing technology. Their entire experience is working within an intuitive interface to get real-time, self-service results with only minimal training. ...more

Our Services for Technology Professionals

E - mail News SMS Headlines Desktop Alerts News Feeds Job Alerts Technology Events Press-Releases