Microsoft, Google and cloud tech news

Jon Brodkin

Previous Article Next Article

Microsoft patches dangerous Windows flaw

Microsoft says customers should update Windows machines immediately

By Jon Brodkin on Mon, 08/02/10 - 3:51pm.

. What's this?

As expected, Microsoft on Monday issued an out-of-band patch for a dangerous flaw affecting all supported versions of Windows, and recommended that customers patch their computers immediately.

The USB rootkit hole is a vulnerability in Windows Shell, allowing attackers to infect systems through hidden files on USB drives or shared network files.

"An attacker who successfully exploited this vulnerability could gain the same user rights as the local user," Microsoft said in its patch notice. "The security update addresses the vulnerability by correcting validation of shortcut icon references."

Microsoft to issue patch for dangerous USB rootkit hole

Most customers have automatic updating enabling and thus will receive the update without taking any manual action.

"For administrators and enterprise installations, or end users who want to install this security update manually, Microsoft recommends that customers apply the update immediately using update management software, or by checking for updates using the Microsoft Update service," the company said.

The patch can be applied to 14 versions of Windows, including various versions of Windows 7, Vista, XP and Windows Server. Microsoft did not promise that the patch would work with older releases and took the opportunity to remind customers that they should "migrate to supported releases to prevent potential exposure to vulnerabilities."

The vulnerability surfaced a couple of weeks ago, shortly after the most recent Patch Tuesday. Microsoft at first offered only a workaround that was deemed "highly impractical" by one security researcher, but felt the vulnerability was critical enough to issue a patch before its next regularly scheduled Patch Tuesday, which occurs next week.

The vulnerability has already been exploited in the wild, with "an uptick in infections in the past few days," says Jason Miller, data and security team leader at Shavlik Technologies.

"If you have applied the workarounds suggested by Microsoft, you should remove them as soon as your systems are patched," Miller says. "The most surprising aspect of this release is how close we are to the regularly scheduled patch Tuesday. With a release this close to Patch Tuesday, it is safe to assume you should patch this security bulletin immediately."

Follow Jon Brodkin on Twitter.

Tags

What is Tech Briefcase?

TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more

Bookmark content

Speed up your research efforts with content across the web.

Search and Store

Find the white papers you need. Create folders for any topic.

View Anywhere

Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.

Don't have an account yet?

About Microsoft, Google and cloud tech news

Jon Brodkin writes about Microsoft, Google, browsers, operating systems, PCs, mobile devices, cloud computing, virtualization, open source and a bunch of other tech stuff for Network World. He also cares just a little bit too much about Boston sports teams. Follow Jon on Twitter @jbrodkin.

Policy on comments: Respectful discussion is welcomed! However, comments that use inappropriate language, consist of name calling or personal attacks, or include accusations of wrongdoing are not appropriate. Those comments will be deleted or edited.