A recently discovered vulnerability in the processing of lnk files in the Windows operating system may be used by attackers to execute malicious code on systems that are attacked by it. Windows users can take a look at our previous coverage of the security issue for additional details.
The nature of the vulnerability makes it possible to exploit it without user interaction, displaying the link icon is enough to execute the code.
Microsoft has provided workarounds and a fix-it solution in a security advisory, unfortunately though with side effects that remove icons from programs in the Windows taskbar or start menu (which from then on show up as blank icons).
Several security companies have created their own workarounds and protections, and one of those resulting programs is the G Data LNK-Checker.
The security software, upon installation and a necessary restart, detects potentially dangerous LNK files and blocks the automatic execution of these vulnerable file types. The application further changes the icons of suspicious links so that they are easier to identify.
Files that are found not to be suspicious are displayed the default way which makes this a preferred solution over Microsoft's Fix-It solution and manual workarounds, which as mentioned above change all icons to blank ones.
It is important to note that suspicious files should not be executed on the computer system (by double-clicking for instance), since this can trigger the malicious code they contain.
G Data LNK-Checker is available for download at the G Data website. The program description is only available in German, the installation however is available in English as well.
Update: English version of G Data LNK-Checker available here.
Update 2: The Link Checker application is still available but not really necessary anymore as Microsoft has released a patch in the meantime that closes the vulnerability on all versions of Windows.Advertisement
Advertising revenue is falling fast across the Internet, and independently-run sites like Ghacks are hit hardest by it. The advertising model in its current form is coming to an end, and we have to find other ways to continue operating this site.
We are committed to keeping our content free and independent, which means no paywalls, no sponsored posts, no annoying ad formats or subscription fees.
If you like our content, and would like to help, please consider making a contribution:
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.