Update on Security Advisory 2286198
Microsoft has updated Security Advisory 2286198 and it now clarifies that: “The vulnerability exists because Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the icon of a specially crafted shortcut is displayed.” Displayed is the important keyword. This is good and addresses our earlier concerns .
Read the original post:
Update on Security Advisory 2286198