XP Help Center request wipes out HD..

Discussion in 'other security issues & news' started by Paul Wilders, Sep 13, 2002.

Thread Status:
Not open for further replies.
  1. Paul Wilders

    Paul Wilders Administrator

    Joined:
    Jul 1, 2001
    Posts:
    12,472
    Location:
    The Netherlands
    A malicious Win-XP Help Center request can easily and silently delete the contents of any directory on your Windows machine. Worse, MS has rolled the fix silently into SP1 without making a public announcement. A good sketch of the problem in English, along with a harmless self-test, can be found here, thanks to Mike at http://unity.skankhouse.org, who did some tinkering after noticing a tip on a BBS.

    Another, slightly earlier, mention comes from VSAntivirus, but the page, unfortunately, is en español, though there are some handy screen shots in their bulletin.

    more..
     
  2. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    I wonder how M$ can possibly fix all their outstanding security/privacy problems when they themselves create them faster than they can fix 'em.
     
  3. Paul Wilders

    Paul Wilders Administrator

    Joined:
    Jul 1, 2001
    Posts:
    12,472
    Location:
    The Netherlands
    Gibson does offer (some sort of) solution in this context. Have a look at here.

    Most probably, a manual registry hack will make this exploit useless, without the need of installing SP1:

    - Open Regedit
    - Delete HKEY_CLASSES_ROOT\hcp
    - Close Regedit

    note: this could affect the Help & Support Center

    Still pending...

    regards.

    paul
     
  4. Vampirefo

    Vampirefo Guest

    Looks like Gibson has created a program, that replaces one file, and this closes the hole. http://grc.com/xpdite/xpdite.htm
     
  5. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Vampirefo...Security Expert? Surely not the same guy who tried to spread molten lava all over DCS a while ago?

    Confused. o_O
     
  6. Paul Wilders

    Paul Wilders Administrator

    Joined:
    Jul 1, 2001
    Posts:
    12,472
    Location:
    The Netherlands
    Yep. All settled and in the past now. And as for the title: one can hardly deny Vamperifo's skills ;)

    regards.

    paul
     
  7. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Hmm...a remarkable change of writing style. I always suspsected there was more there than met the eye! :)
     
  8. MickeyTheMan

    MickeyTheMan Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    1,016
    Agreed . One's opinion don't make him/her less competent because of not being in agreement with you.
     
Loading...
Thread Status:
Not open for further replies.