Yesterday, Microsoft released an out-of-band security update to address the .LNK vulnerability described in Microsoft Security Advisory 2286198. Microsoft Security Bulletin MS10-046 addresses one vulnerability in Windows, has a maximum severity rating of Critical, and an Exploitability Index rating of 1. The security vulnerability affects all supported editions of Windows including Windows XP, Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2.
Microsoft recommends that customers and partners install the update immediately. Additionally, we recommend that partners patch their own systems and then reach out to their customers to ensure that their systems are secure. The security update protects against attempts to exploit the vulnerability by several malware families.
IT professionals may also want to view the out-of-band bulletin release overview webcast with Christopher Budd, senior security response communications manager, Microsoft, for a quick synopsis of the highest risk and impact scenarios. You can view this webcast on demand at this link: Information About Microsoft's August 2010 (Out-of-Band) Security Bulletin Release
Public Resources related to this alert:
Microsoft Security Bulletin MS10-046
Thank you and have a wonderful day,
Eric Ligman – Follow me on TWITTER, LinkedIn, and RSS and see “What I’m thinking” Global Partner Experience Lead Microsoft Worldwide Partner Group This posting is provided "AS IS" with no warranties, and confers no rights