The Fix it disables .LNK and .PIF file functionality automatically on a computer that is running Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, or Windows Server R2.
Edit Note:
For for applying the workaround to a home computer or even a handful of computers, the Fix it solution is simply to apply. To apply the same workaround to all your domain computers using Group Policy, see the instructions by Microsoft MVP, Alan Burchill, at How to workaround KB2286198 Shortcut Icon security issues with Group Policy.
Complete details about the Fix it solution to both enable the workaround and disable it after a security update has been released are available in Microsoft KB 2286198.
Enable Workaround
Fix this problem
Microsoft Fix it 50486
NOTE: Applying the Fix it will require a restart of the machine.
Microsoft Fix it 50486
NOTE: Applying the Fix it will require a restart of the machine.
After a security update is released for this vulnerability, you can undo the changes made by the Fix it solution by using Microsoft Fix it 50487:
Disable workaround
References:
- KB 2286198: Vulnerability in Windows Shell could allow remote code execution
- MSRC Blog Security Advisory 2286198 Updated
- How to workaround KB2286198 Shortcut Icon security issues with Group Policy
Clubhouse Tags: Clubhouse, Microsoft, Windows, Security, Vulnerabilities, Information,
No comments:
Post a Comment