Microsoft Releases Temp Fix for XP Help Function Flaw

by Brandon Dimmel on 20100617 @ 10:28PM EST | google it | send to friends
Filed under Security | (related terms: microsoft, windows xp, google researcher, ormandy, flaw)

According to reports, a flaw in the Windows XP operating system, which was first reported last week by a Google researcher, has been exploited by hackers in an attempt to spread malware.

The flaw was reported on Monday, and is related to a vulnerability in Windows XP's Help function. A Google researcher by the name of Tavis Ormandy discovered that the web link script used in XP's Help and Support Center could be manipulated in order to route users towards malicious online content. (Source: itproportal.com)

Google Researcher Publishes Hacking Guide

To Microsoft's disappointment, Ormandy published the details regarding the exploit just four days after he mentioned it to Microsoft, giving the software giant a very narrow time span in which to deal with the issue. Ormandy's report included a detailed description of how a hacker might activate the exploit, reportedly doing so because he felt it would force Microsoft to act promptly with a fix.

Reports now suggest hackers are using the exploit reported by Google to launch a malware attack. There's not much known about the attacks, but Microsoft is aware of them and says it is working hard on a fix. (Source: zdnet.com)

Temporary Fix for WinXP Help Function Flaw

In the meantime, Microsoft has posted a temporary Fix It script designed to prevent all links using the troublesome HCP protocol in Windows XP's Help and Support Center. The temporary patch essentially disables all script related to this feature (link below):

http://support.microsoft.com/kb/2219475

Stay Informed: Subscribe Free to Infopackets, Today! Get your daily fix of Microsoft Windows news, reviews, tech tips, plus free software (freeware) goodies daily -- all absolutely free -- delivered straight to your email inbox! Bonus: join our website today and you'll also receive our highly coveted Top 10 Tech Reports, including: Top 10 PC Security Essentials, Windows Optimization Secrets, Top Freeware Antivirus, MS Office alternatives and more. Don't delay: subscribe today! Click here for more info.

Infopackets Game of the Week

Secrets of the Dark: Eclipse Mountain Collector's Edition

Click here to read more.

Most Clicked Stories
(In the Past 15 Days)

Freebies

Subscription Center

Recommended Sites

DownloadMix.com: More Freeware + Shareware

About

Established in 2001 and read by over 250,000 users world-wide, infopackets features the latest in headline news based on MS Windows, Internet, and technology trends. Subscription to our website is free! Join our discussion list, today!