10 matches found
MS Windows XP/2000/NT 4 Help Facility ActiveX Control Buffer Overflow
No description provided by source. source: http://www.securityfocus.com/bid/5874/info The ActiveX control that provides much of the functionality for the Windows Help Center contains an unchecked buffer. Successful exploitation could result in execution of arbitrary code in the security context o...
Mass WordPress Compromise Fuels CRIDEX Worm Outbreak
There are a number of compromised sites on the popular blogging platform, WordPress, which, according to a Trend Labs report, are actively infecting users with the CRIDEX worm. The infections are part of a social engineering campaign that lures users with emails purporting to come from trusted...
Stuxnet Media Storm Now Feeding SEO Attacks?
How do you know when a computer virus has officially jumped the fence to become a media sensation? Probably when scammers start using popular interest in it as bait for their own malware. So it is with the Stuxnet worm, which was identified in July, but has become the focus of intense media...
MS KB2219475: Windows Help Center hcp:// Protocol Handler Arbitrary Code Execution
If a remote attacker can trick a user on the affected host into accessing a malicious web page containing specially crafted 'hcp://' URLs, an as-yet unpatched vulnerability in Windows Help and Support Center that arises due to its failure to validate URLs that use the HCP protocol could be...
Mike Mimoso on Targeted Attacks and the Google-Microsoft Controversy
Dennis Fisher talks with Mike Mimoso of SearchSecurity.com and Information Security magazine about the current spate of highly targeted attacks, the silliness of the term cyberwar and the controversy surrounding the disclosure of the Windows Help Center flaw. Podcast audio courtesy of sykboy65...
Attackers Exploiting Windows Help Center Flaw
Researchers have found evidence that attackers are exploiting the vulnerability in the Windows Help and Support Center that was at the center of so much controversy last week. The flaw, which is in the protocol handler related to the Microsoft Windows Help and Support Center, was disclosed late...
Windows Help Center Dvdupgrade code execution
It's possible to execute any code via local zone scripting...
[Full-Disclosure] MS04-015 - Windows Help Center - Dvdupgrade
------------------------------------------------------------ - EXPL-A-2003-027 exploitlabs.com Advisory 027 - ------------------------------------------------------------ - Windows Help Center - Dvdupgrade - OVERVIEW ======== "Help and Support Center HSC is a feature in Windows that provides help...
Microsoft Windows XP/2000/NT 4.0 - Help Facility ActiveX Control Buffer Overflow
// source: https://www.securityfocus.com/bid/5874/info The ActiveX control that provides much of the functionality for the Windows Help Center contains an unchecked buffer. Successful exploitation could result in execution of arbitrary code in the security context of the current user. / By...
Microsoft Windows XP2000NT 4.0 - Help Facility ActiveX Control Buffer Overflow
Microsoft Windows XP2000NT 4.0 - Help Facility ActiveX Control Buffer Overflow // source: https://www.securityfocus.com/bid/5874/info The ActiveX control that provides much of the functionality for the Windows Help Center contains an unchecked buffer. Successful exploitation could result in...