Metasploit s HD Moore was in the midst of researching the recently patched LNK (Windows shortcut) vulnerability when he stumbled upon a serious problem. Moore issued a brief warning about the issue via Twitter and linked to a critical bulletin from Acros, a Slovenian security research outfit, that references a remote code execution bug in Apple’s latest iTunes update. A systematic attack could deploy malicious code to a large number of Windows workstations in a short period of time, possibly as an Internet worm.
Source: https://threatpost.com/hd-moore-critical-flaw-40-different-windows-apps-081910/74354/