Critical Zero day exploit for Server 2003SP2 and XP SP3

June 16, 2010 | 1 Comment

Pac IT Pros members: You should be aware of a zero day exploit that affects Server 2003 and XP. (Server 2008 and Vista/Win 7 are not affected.) The fix is to disable the HCP protocol used in Help and Support Center.

The exploit allows for remote code execution. The attack make use of links on web pages or email messages that use the hcp:// prefix rather than the normal http://. Web links are normally HTTP, but HCP links are used by the Help and Support Center (helpctr.exe) and are not as well known.

This vulnerability could allow hackers to take remote control of affected systems.

Microsoft labels this one as CRITICAL – So run Mr. Fix it today.

http://www.microsoft.com/tec hnet/security/advisory/22194 75.mspx
http://support.microsoft.com /kb/2219475

Doug

Comments

You must be logged in to post a comment.

Search PacITNews

Search for:
Follow Us on LinkedIn
Join Us on Facebook
Follow Us on Twitter
- RT @jkc137: Are you a Powershell junkie looking for a chance to show your stuff? @PacITPros is looking for a speaker for the March TechD ... 2012/02/03
- RT @richardhicks: I'll be presenting #Forefront #TMG #UAG and #DirectAccess @pacitpros TechDays SF in March. Register here: http://t.co/ ... 2012/02/03
- RT @scevans: I'm speaking at an IT Pro Conference Mar 22/23rd in SF. Register at http://t.co/jK14KN8k 2012/02/03
- RT @UberGeekGirl: Learning about server migration tools from @joeysnow at @pacitpros tonight. Full house. 2012/01/25
Links
- Pac IT Pros Home Page
Meta

Recent Posts

Archives

Jun

16

Critical Zero day exploit for Server 2003SP2 and XP SP3

Comments

Search PacITNews

Follow Us on LinkedIn

Join Us on Facebook

Follow Us on Twitter

Links

Meta