Windows zero-day exploit?: USB storage + .lnk files + file explorer = FAIL

I just did a presentation to the State of Mississippi on USB as an attack vector.  The vector continues to evolve.. I love it. … another tool for my kit! http://grandstreamdreams.blogspot.com/2010/07/windows-zero-day-exploit-usb-storage.html and http://blog.didierstevens.com/2010/07/18/mitigating-lnk-exploitation-with-ariad/ and http://blog.lumension.com/?p=3214 and a proof of concept http://www.exploit-db.com/exploits/14403/ and a metasploit module http://www.metasploit.com/modules/exploit/windows/browser/ms10_xxx_windows_shell_lnk_execute *update:  Zeus botnet exploiting it: http://www.theregister.co.uk/2010/07/27/zeus_exploit_shortcut_hole/ * *update:  M$FT releasing out of band patch: http://www.microsoft.com/technet/security/bulletin/ms10-aug.mspx

Advertisement

~ by stevegoldsby on July 25, 2010.

Posted in Uncategorized

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

 
Follow

Get every new post delivered to your Inbox.