Unpatched Windows 7 vulnerability & stealthy rootkit menu
Follow us:

User Tag List

Results 1 to 2 of 2
  1. 07-16-2010 #1
    Sednogmah's Avatar
    Sednogmah
    Sednogmah is offline
    Contributor
    Reputation
    129
    Join Date
    Oct 2009
    Posts
    158
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Unpatched Windows 7 vulnerability & stealthy rootkit

    As I already mentioned yesterday in the Shoutbawx, there are rumors about a new yet unpatched and unpublished 0-day vulnerability in Windows 7. The exploit seems to target a flaw in Explorer's shortcut file (.LNK) parser. What's really noteworthy though is how it installs rootkit drivers that have valid digital signatures. The keys were probably stolen from developers at RealTek.

    The result? You plug in an infected USB stick and a complete rootkit hides itself without any warning whatsoever. Disabling Auto-Play does not help.

    Sources:
    - Slashdot IT Story | Malware Targets Shortcut Flaw In Windows, SCADA
    - News | VirusBlokAda
    Last edited by Sednogmah; 07-20-2010 at 10:48 PM.
    Reply With Quote Reply With Quote
    Unpatched Windows 7 vulnerability & stealthy rootkit
  2. 07-20-2010 #2
    Sednogmah's Avatar
    Sednogmah
    Sednogmah is offline
    Contributor
    Reputation
    129
    Join Date
    Oct 2009
    Posts
    158
    Thanks G/R
    0/0
    Trade Feedback
    0 (0%)
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Microsoft has now confirmed the flaw and there's a PoC exploit for local media like USB thumb drives and a more or less PoC for network shares:

    How to use the “Windows Link Icon” Metasploit WebDAV exploit « Sploitboiler.

    Be very careful with external media like USB drives and network shares!

    Microsoft's official workaround is hilarious:

    Who needs icons? *g*
    Last edited by Sednogmah; 07-21-2010 at 09:37 AM.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Similar Threads

  1. [Hack] ★ [Speedhack] : All Regions / Undetected & Unpatchable! ★
    By Devm in forum World of Warcraft Bots and Programs
    Replies: 41
    Last Post: 10-20-2016, 08:47 PM
  2. world of warcraft skin for WINDOWS MEDIA
    By Elites360 in forum World of Warcraft General
    Replies: 4
    Last Post: 12-27-2006, 05:01 PM
  3. Mac vs. Windows
    By Tenche in forum Community Chat
    Replies: 31
    Last Post: 11-13-2006, 03:57 PM
  4. Window Title Renaming Tool
    By Matt in forum World of Warcraft Bots and Programs
    Replies: 7
    Last Post: 07-29-2006, 01:59 AM
  5. How to turn off window mode
    By insaneomato in forum World of Warcraft General
    Replies: 1
    Last Post: 05-31-2006, 11:18 PM
All times are GMT -5. The time now is 07:54 PM. Powered by vBulletin® Version 4.2.3
Copyright © 2025 vBulletin Solutions, Inc. All rights reserved. User Alert System provided by Advanced User Tagging (Pro) - vBulletin Mods & Addons Copyright © 2025 DragonByte Technologies Ltd.
Google Authenticator verification provided by Two-Factor Authentication (Free) - vBulletin Mods & Addons Copyright © 2025 DragonByte Technologies Ltd.
Digital Point modules: Sphinx-based search