Make Homepage | Add To Favorites | Print Page | Submit News | Feedback | Contact | 

Your Technical Computer Information Resource!  
     
  Technical Updates @ TACKtech Corp.  

02.26.2003 - MS03-006: Flaw in Windows Me Help and Support Center Could Enable Code Execution (812709)



View Microsoft related news. An attacker could exploit the vulnerability by constructing a URL that, when clicked on by the user, would execute code of the attacker’s choice in the Local Computer security context. The URL could be hosted on a web page, or sent directly to the user in email. In the web based scenario, where a user then clicked on the URL hosted on a website, an attacker could have the ability to read or launch files already present on the local machine. In the case of an e-mail borne attack, if the user was using Outlook Express 6.0 or Outlook 2002 in their default configurations, or Outlook 98 or 2000 in conjunction with the Outlook Email Security Update, then an attack could not be automated and the user would still need to click on a URL sent in e-mail. However if the user was not using Outlook Express 6.0 or Outlook 2002 in their default configurations, or Outlook 98 or 2000 in conjunction with the Outlook Email Security Update, the attacker could cause an attack to trigger automatically without the user having to click on a URL contained in an e-mail.

- Download Windows Me Patch (from WindowsUpdate)
- View Microsoft Security Bulletin MS03-006
- View Microsoft End User Security Bulletin
- View Microsoft Knowledge Base Article - 812709
- Visit Microsoft Corporation

NID: 554 / Submitted by: TACKtech Team
Categories: Microsoft, Patches and Updates
Most recent Microsoft related news.
MS17-013 - Critical: Security Update for Microsoft Graphics Component (4013075) - Version: 1.1
MS16-084 - Critical: Cumulative Security Update for Internet Explorer (3169991) - Version: 1.1
MS17-014 - Important: Security Update for Microsoft Office (4013241) - Version: 1.0
MS17-0113 - Critical: Security Update for Microsoft Graphics Component (4013075) - Version: 1.0
MS17-009 - Critical: Security Update for Microsoft Windows PDF Library (4010319) - Version: 1.0
View archive of Microsoft related news.

Visit the TACKtech Shop
  Popular Tech News  
  Most Viewed News  
  Top Affiliates  
........