SmartDefense Security Advisory

Microsoft Windows Shell LNK File Remote Code Execution Vulnerability

Industry Reference:CVE-2010-2568.

A code execution vulnerability has been reported in Windows Shell. The Shell organizes objects necessary for running applications into a hierarchical namespace and provides users and applications with a consistent and efficient way to access and manage objects. An attacker might exploit this issue to execute arbitrary code on a vulnerable system. This protection detects and blocks the transferring of suspicious LNK files over CIFS.

Security Gateway R70/R71: A new protection is now available.
VPN-1 NGX R65 & VSX NGX R65: A new protection is now available.
CPAI-2010-221.

 July 19, 2010

IPS Software Blade

Buy Now

Guidelines

Forums

SmartDefense Microsoft Security Resources
You have received this notification because you have subscribed to the SmartDefense mailing list. If you would prefer to no longer receive security alerts and defense notifications please click to Unsubscribe

As always, please feel free to contact us directly if you have any comments or questions.

Read Check Point's Privacy Policy
©2003.2009 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
800 Bridge Parkway, Redwood City, CA USA 94065