Microsoft released an out-of-band patch to address a critical vulnerability in Windows Shell. A previous message was sent to LSU IT Info list on July 19th, 2010 informing the list of the vulnerability and providing workarounds. Users that took actions to implement the workarounds will need to reverse those actions. Instructions to reverse these actions can be found here: http://support.microsoft.com/kb/2286198
The security updates for these vulnerabilities are available for download at the Microsoft Update web site (http://www.update.microsoft.com). Please note that systems joined to the LSU Active Directory automatically receive the critical and security updates when available.
Additional information and tools:
Out-of-Band Microsoft Security Bulletin MS10-046 - Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198) http://www.microsoft.com/technet/security/Bulletin/MS10-046.mspx
LNK Vulnerability: Chymine, Vobfus, Sality and Zeus http://www.f-secure.com/weblog/archives/00001996.html
Microsoft Ships FixIt Tool for Windows Shell .lnk Vulnerability http://support.microsoft.com/kb/2286198