LANDesk Patch News Bulletin: Microsoft Security Advisory (2286198)  - Vulnerability in Windows Shell Could Allow Remote Code Execution 16-JUL-2010

Version 4

    LANDesk Security and Patch News

     

    Update

    (July 21, 2010) Microsoft released a Fix it patch to implement the workarounds listed in the Security Advisory. LANDesk has created vulnerability definition content for this Fix it patch. See the page below for more details and availability:

     

     

     

    Update

    (July 20, 2010) LANDesk AntiSpyware provides signature definitions to detect the zero-day root kit that is exploiting this Microsoft vullnerability. The rootkit will be detected as :

     

    • Win32.Rootkit.Stuxnet
    • Win32.TrojanDropper.Stuxnet

     

     

     

    Headlines

    (July 16, 2010) LANDesk is monitoring a new security advisory posted by Microsoft. Microsoft is investigating reports of limited, targeted attacks exploiting a vulnerability in Windows Shell, a component of Microsoft Windows. This advisory contains information about which versions of Windows are vulnerable as well as workarounds and mitigations for this issue.

    The vulnerability exists because Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the user clicks the displayed icon of a specially crafted shortcut. This vulnerability is most likely to be exploited through removable drives. For systems that have AutoPlay disabled, customers would need to manually browse to the root folder of the removable disk in order for the vulnerability to be exploited. For Windows 7 systems, AutoPlay functionality for removable disks is automatically disabled.

     

     

     

     

     

    Where to Send Feedback

    At LANDesk, we are constantly striving to improve our products and services and hope you find these changes reflective of our ongoing commitment to listen to you—our partners and customers—in providing the best possible solutions to meet your needs now and in the future.  Please continue to provide feedback by contacting our local support organization.

     

    Best regards,

    LANDesk Product Support

     

    Copyright © 2010 LANDesk Software.  All rights reserved. LANDesk is either a registered trademark or trademark of LANDesk Software, Ltd. or its affiliated entities in the United States and/or other countries. Other names or brands may be claimed as the property of others.

     

    Information in this document is provided for information purposes only.  The information presented here is subject to change without notice.  This information is not warranted to be error-free, nor subject to any other warranties or conditions, whether expressed orally or implied in law, including any implied warranties and conditions of merchantability or fitness for a particular purpose. LANDesk disclaims any liability with respect to this document and LANDesk has no responsibility or liability for any third party products of any content contained on any site referenced herein.  This document may not be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without our prior written permission. For the most current product information, please visit http://www.landesk.com.