Microsoft Patches Windows Me Flaw
Microsoft Corp. on Wednesday issued a patch for a new critical vulnerability in Windows Me that gives attackers the ability to execute code on remote machines.
The vulnerability is the result of a buffer overrun in the Help and Support Center in Windows Me. Specifically, the problem lies in the URL handler for the "hcp://" prefix, which is used to execute URL links to the Help and Support Center.
In order to exploit the flaw, an attacker would need to create a URL that would execute the attacker's code when the user clicked on it. The attacker could either host the URL on a Web site or send it to a user in e-mail.
More at eWeek
Is Google Invading Your Privacy?
- 12-Way Sun Server Is Built to Last
- Mitnick: Leaving the Dark Side
- Samsung announces world's slimmest and lightest combo drive
- Interview with Nvidia CEO
- AMD to launch 400MHz FSB Athlon XP in May
- Combined Hewlett-Packard & Compaq Miss Quarterly Revenue Projections
- LG Electronics to build plasma display panel module factory in Nanjing
- HomePlug moves toward AV-capable spec
- Microsoft HRM On Tap?
Rumors of Microsoft and EA Vying for Sega Grow
- IBM Ups Speed Estimates of PowerPC 970 Processor
- Novell Posts Q1 Loss
- OCZ Announces Full Support for RDRAM PC-1200 and PC-1333
- Nvidia's NV31 rears its head
- Micron gets backing against Hynix
- IBM, Butterfly.Net Team on Gaming
- Ziff Davis - shame on you
- Readers and dinosaurs rant on ZD
- Sega Denies EA Discussions
Sponsored
See more
Latest news
Miscellaneous Previous news
Partners
