xbiz world
xbiz premiere

Microsoft Warns of .LNK Flaw

SUNNYVALE, Calif. — Microsoft has issued an advisory for the vulnerability affecting all current versions of Windows, including the recently released service pack one of Windows 7 and Windows server 2008 R2.

PCMag reports the bug comes from Windows improperly handling shortcut (.LNK) files executed through the shell, typically Windows Explorer.

When the user launches such a shortcut through the associated icon, Windows fails to properly validate the parameters of the shortcut and malicious code in the .LNK may be executed.

The attack would typically be performed through removable drives, like USB thumb drives of CD-ROMs.

Microsoft lists two workarounds in the advisory. The first disables the display of icons for shortcuts, which will create a very wrong-looking situation in Windows Explorer. The second disables the WebDAV client service, which only affects that vector.

Microsoft has begun their process of investigation and patch development and this is the sort of attack that can be found and blocked by conventional anti-malware.

Related:  

Copyright © 2025 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

Pornhub to Shut Down Access in Arizona Over Age Verification

Aylo will geoblock Pornhub across Arizona starting Sept. 26, when the state’s age verification law, HB 2112, goes into effect.

Flirtback Launches Zcash Crypto Payment Solution

Creator platform Flirtback has launched its Zcash (ZEC) crypto payment solution.

Vixen Media Group Appoints Samuel Spencer as President, COO

Vixen Media Group (VMG) has named industry veteran Samuel Spencer as its new president and chief operating officer.

French Telecoms Mogul Ignites AV Firestorm With Free VPN, Sarcastic Tweet

French billionaire Xavier Niel, founder of telecommunications giant Iliad, sparked a heated debate this week when he appeared to admit that the company's Free Mobile wireless carrier integrated no-cost VPN into its service specifically to circumvent age verification restrictions on adult content.

UPDATED: Michigan Legislators Propose Online Porn Ban

Michigan lawmakers have introduced a bill that would make it illegal to distribute pornography via the internet in the state.

Taliban Restricts Access to Adult Content by Shutting Down Internet

The Taliban has shut down internet access across a large portion of Afghanistan in a move to prevent what it deems "immoral activities."

Go.cam Adds Video Spoofing Protection for AV

Go.cam has announced that its verification solution now features security against video spoofing.

SexLikeReal Releases 'VR Self-Care' Guide

SexLikeReal (SLR) has published a blog post spotlighting “VR Self-Care.”

Brady Mills Agency to Launch 'AgeWallet' Subscription AV Solution

Tech company Brady Mills Agency announced that its subscription-based merchant age verification solution, AgeWallet, will launch in November.

EU Advocate General: France Can Require Foreign Sites to Implement AV

An advocate general of the European Union’s Court of Justice on Thursday advised the court to rule that France may require pornographic websites based in other EU states to implement age verification in accordance with French law.

Show More