Microsoft told Windows XP users recently not to press the F1 key when prompted by a Web site, as part of its reaction to an unpatched vulnerability that hackers could exploit to hijack PCs running Internet Explorer (IE).
In a security advisory issued, Microsoft confirmed the unpatched bug in VBScript, offered more information on the flaw and provided some advice on how to protect PCs until a patch shipped.
"The vulnerability exists in the way that VBScript interacts with Windows Help files when using Internet Explorer," read the advisory. "If a malicious Web site displayed a specially crafted dialog box and a user pressed the F1 key, arbitrary code could be executed in the security context of the currently logged-on user."
Windows 2000, Windows XP and Windows Server 2003 are impacted by the bug, said Microsoft, and any supported versions of Internet Explorer (IE) on those operating systems -- including IE6 on Windows XP -- could be leveraged by attackers. Previously, Prodeus had said that users running IE7 and IE8 were at risk, but had not called out IE6.
Customers running Windows Vista, Windows Server 2008, Windows 7 or Windows Server 2008 R2 are safe from such attacks, Microsoft said.
Microsoft has recently released an Advisory named “Microsoft Security Advisory (981169)”
As per the advisory there is a vulnerability that if a user presses F1 Key on being asked by a Website or webpage, the website can run potentially malicious code or scrip on such computers. That computer can get hacked, information can be stolen or it may also lead to data theft.
It is an advice to all our readers and Windows XP, Windows 2002 and Windows 2003 Server users to beware of this vulnerability and do not press the F1 Key when asked by a website. This may leave your computer unsecured or infected with virus or trojans.
Note: Even if you are a Windows Vista User or Windows 7 or Windows Server 2008 user, its a safety tip to not click F1 Key when asked by a website.
Content courtesy of Microsoft: Don’t press F1 key in Windows XP
Hey! My friends, If you like my post you can save it using "Save Page as PDF" button below and you can even share them to your friends with social networking buttons provided below this post.
No comments:
Post a Comment
Hey Guys! Thanks for visiting my blog. Hope you enjoy reading. Just leave your comments if you think this post is a worth readable! Your valuable comments are always welcomed. Please don't spam! and No abusive language would be tolerated. I would moderate your feedback and then it would be published. If you have any query I will try to give feedback as soon as possible.