New Patch from Microsoft for .LNK SCADA vulnerability

According to the Channel Insider blog, Microsoft has released an out-of-band patch (MS10-046) that attempts to repair the .LNK vulnerability that has been used to attack Siemens S7, PCS7 and WinCC-based HMI systems.

Channel Insider's  blog article discusses the vulnerability, as it was presented at DefCon last week, to an audience of rapt hackers and crackers as the "Million Dollar Windows Vulnerability."

The article recommends immediate installation of this patch, since Microsoft released it only a week before the traditional "Patch Tuesday."

Read the whole article here.