Originally Posted by Scripting
Yes, I know. It exploits a vulnerability in the handling of Windows Shortcut files (.LNK) that contain an icon resource pointing to a malicious DLL. This module creates a WebDAV service that can be used to run an arbitrary payload when accessed as a UNC path.
so it's allow the hacker to modify the service, am i right?