Free Tool from Sophos to fix Windows .LNK vulnerability
The shortcut (.LNK) file vulnerability that we reported on earlier this month - which affects Windows XP, Vista and Windows 7 - has not yet been patched by Microsoft. Security Advisory 2286198 advised of workarounds but many people are not happy with those. There are now exploits out there "in the wild" that take advantage of this vulnerability. For the interim, security company Sophos has released a tool that detects malicious links in shortcuts and blocks them. It works with any anti-virus software and it can be uninstalled when Microsoft issues their own patch for the problem. You can read more about it and how to get it here:
http://www.net-security.org/secworld.php?id=9638