posted
Jun 11, 2010 by News Gatherer
In Windows XP and Windows Server 2003 by clicking on a hcp: / / cast through a link Helpctr.exe social protocol handler is usually a secure way to send a list to help with content that can help predict and control the first center to navigate to a help page. A security researcher has discovered Google, however, a help page with a vulnerability to cross-site scripting can be combined with a mechanism to abuse the list function allows you to access the page with a query string exploit . For example, clicking on a malicious hcp: / exploits / link to bypass XSS vulnerability Helpctr.exe 's security controls and, finally, run arbitrary executable file on the machine.
Although this avoids the problem of exploitation on an affected system, keep in mind that Microsoft will break all the local links, help the legitimate use hcp: / /. It requires editing the registry, and Microsoft has stated two different ways to do so. Microsoft also said a solution to the problem: cancellation of registration of the HCP protocol. For example, the connections in the control panel can not work.
Neither Vista or Windows 7 are affected by it, with emphasis on improving security. Two things about this failure: first, is another reason to leave XP behind. Secondly, the vulnerability has been discovered by Google and Microsoft reported on June 5 and was released June 9. "The public release of details on how to exploit this vulnerability without giving us time to solve the problem for our customers who may be affected, so it is more likely to attack large customers and compromises," the company said in a post . Microsoft not happy with that.
httpv://www.youtube.com/watch?v=2IFiYb7X66o&feature=youtube_gdata
Related Stories
Uncategorized 
