Microsoft Security Advisory (967940): Update for Windows Autorun

02-08-2011

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

Microsoft Security Advisory (967940): Update for Windows Autorun - 2/8/2011

Revision Note: V2.0 (February 8, 2011): Summary and update FAQ revised to notify users that the 971029 update to Autorun that restricts AutoPlay functionality to CD and DVD media will be offered via automatic updating. Advisory Summary:Microsoft is announcing the availability of updates to the Autorun feature that help to restrict AutoPlay functionality to only CD and DVD media on supported editions of Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008. Restricting AutoPlay functionality to only CD and DVD media can help protect customers from attack vectors that involve the execution of arbitrary code by Autorun when inserting a USB flash drive, network shares, or other non-CD and non-DVD media containing a file system with an Autorun.inf file.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

AUTORUN(1) AUTORUN(1) NAME
autorun - automatically mounts/unmounts CDROMs and executes /path_to_cdrom/autorun after mounting SYNOPSIS
autorun [-lmqv?V] [-a EXEC] [-c CDPLAYER] [-e STRING] [-i MILLISEC] [-n STRING] [-t STRING] [--autorun=EXEC] [--cdplayer=CDPLAYER] [--interval=MILLISEC] [--lock] [--mountonly] [--notify=STRING] [--notify-insert=STRING] [--notify-eject=STRING] [--quiet] [--verbose] [--help] [--usage] [--version] [cdromdevices...] DESCRIPTION
autorun automagically recognises all available CDROMs in your system, mounts them upon insertion and executes a possible 'autorun' exe- cutable on the CD. To allow an ordinary user to do this you have to add the options user,exec in /etc/fstab to the CDROMs you want to use. You may also use Autorun.desktop for KDE. Just place it in your Autostart folder. Command strings are parsed and %P% is replaced by the mountpoint path. %D% is replaced by the device path. After that the command string will be executed using /bin/sh -c "command string"; OPTIONS
-a, --autorun=EXEC Execute EXEC, if the CD changes. This executable must be located on the CD. I.e. if you specify "--autorun=myprogram", and your CD is mounted under /mnt/cdrom, after the CD is changed, autorun will attempt to run "/mnt/cdrom/myprogram". (default "/autorun") -c, --cdplayer=CDPLAYER Run CDPLAYER, if an audio CD is inserted (default "/usr/bin/kscd") -i, --interval=MILLISEC The time to wait in MILLISEC between checks (default 1000) -l, --lock Lock the mounted media (unmount by hand) -m, --mountonly mount/unmount only (do not execute anything) -n, --notify=STRING Command STRING that will executed if the CD changes (default "/usr/bin/kfmclient configureDesktop") -t, --notify-insert=STRING Command STRING that will executed if a CD was inserted and the autorun executable "/autorun" or the one specified with --autorun was NOT executed. (default "/usr/bin/kfmclient openURL %P%") -e, --notify-eject=STRING Command STRING that will executed if a CD was ejected (default "") -q, --quiet Don't produce any output -v, --verbose Produce verbose output -?, --help Give this help list --usage Give a short usage message -V, --version Print program version Mandatory or optional arguments to long options are also mandatory or optional for any corresponding short options. AUTHOR
Harald Hoyer <Harald.Hoyer@redhat.de> There is a project web page at parzelle.de: http://parzelle.de/. AUTORUN(1)

Security Advisories (RSS) - Microsoft

Microsoft Security Advisory (967940): Update for Windows Autorun - 2/8/2011

LEARN ABOUT REDHAT

autorun