Lucene search
K

6 matches found

Information Security Automation
Information Security Automation
added 2025/11/05 2:14 p.m.10 views

About Remote Code Execution – Windows LNK File (CVE-2025-9491) vulnerability

About Remote Code Execution - Windows LNK File CVE-2025-9491 vulnerability. A vulnerability in the Microsoft Windows shortcut .LNK handling mechanism allows malicious command-line arguments to be hidden in the Target field using whitespace characters, making them invisible to standard tools...

7.8CVSS7.4AI score0.63102EPSS
Exploits3
The Hacker News
The Hacker News
added 2025/06/23 1:12 p.m.13 views

XDigo Malware Exploits Windows LNK Flaw in Eastern European Government Attacks

Cybersecurity researchers have uncovered a Go-based malware called XDigo that has been used in attacks targeting Eastern European governmental entities in March 2025. The attack chains are said to have leveraged a collection of Windows shortcut LNK files as part of a multi-stage procedure to depl...

7.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:25 p.m.10 views

CVE-2020-0729

A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'...

8.8CVSS8AI score0.30863EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/08 12:0 a.m.3 views

libyal liblnk buffer overflow vulnerability (CNVD-2020-13528)

liblnk is a library for accessing the Windows shortcut file LNK format. A heap buffer overflow vulnerability exists in liblnklocationinformation.c in versions prior to liblnk 20191006 in liblnklocationinformationreaddata, which can be exploited by an attacker to cause a buffer overflow or heap...

3.3CVSS7.3AI score0.00435EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2017/11/08 12:0 a.m.418 views

Microsoft Windows LNK File Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LNK Code Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the handling of Windows Shortcut files .LNK that...

9.3CVSS7.9AI score0.90026EPSS
Exploits27
ThreatPost
ThreatPost
added 2015/03/13 2:20 p.m.8 views

Podcast Discussing the Windows LNK Patch

Dennis Fisher and Mike Mimoso discuss the new patch for the five-year-old LNK vulnerability used by Stuxnet, the new iOS patches and the other news of the week. Download: digitalunderground191.mp3 Music by Chris Gonsalves...

1.8AI score
Exploits0References2
Rows per page
Query Builder