根据微软的安全公告,黑客能利用带有.link后缀的恶意快捷方式文件自动运行恶意软件。当 USB设备插在PC上时,恶意软件也可以在一些系统上自动执行。


所有版本的Windows,包括刚发布的Windows SP1 beta版以及近期退出市场的Windows XP SP2和Windows 2000,都受到此漏洞影响。

Microsoft has acknowledged that attackers can use a malicious shortcut file, identified by the ".lnk" extension, to automatically execute their malware by getting users to view the contents of a folder containing a malformed shortcut. The risk is even greater if hackers use infected USB flash drives to spread their attack code, since the latter automatically executes on most Windows PCs as soon as drive is plugged into the machine.

All versions of Windows are vulnerable to attack, including the just-released beta of Windows 7 Service Pack 1 (SP1), as well as the recently retired Windows XP SP2 and Windows 2000.

更多信息请访问这里

 


Comments

Name

Email

Website

Speak your mind