6 matches found
About Remote Code Execution – Windows LNK File (CVE-2025-9491) vulnerability
About Remote Code Execution - Windows LNK File CVE-2025-9491 vulnerability. A vulnerability in the Microsoft Windows shortcut .LNK handling mechanism allows malicious command-line arguments to be hidden in the Target field using whitespace characters, making them invisible to standard tools...
XDigo Malware Exploits Windows LNK Flaw in Eastern European Government Attacks
Cybersecurity researchers have uncovered a Go-based malware called XDigo that has been used in attacks targeting Eastern European governmental entities in March 2025. The attack chains are said to have leveraged a collection of Windows shortcut LNK files as part of a multi-stage procedure to depl...
CVE-2020-0729
A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'LNK Remote Code Execution Vulnerability'...
libyal liblnk buffer overflow vulnerability (CNVD-2020-13528)
liblnk is a library for accessing the Windows shortcut file LNK format. A heap buffer overflow vulnerability exists in liblnklocationinformation.c in versions prior to liblnk 20191006 in liblnklocationinformationreaddata, which can be exploited by an attacker to cause a buffer overflow or heap...
Microsoft Windows LNK File Code Execution
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LNK Code Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the handling of Windows Shortcut files .LNK that...
Podcast Discussing the Windows LNK Patch
Dennis Fisher and Mike Mimoso discuss the new patch for the five-year-old LNK vulnerability used by Stuxnet, the new iOS patches and the other news of the week. Download: digitalunderground191.mp3 Music by Chris Gonsalves...