[Am-info] Another ME exploit.
Fred A. Miller
fmiller@lightlink.com
Thu, 6 Mar 2003 21:59:24 -0500
=2D----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Win - MS03-006: Windows ME help component buffer
overflow
Microsoft released MS03-006 ("Windows ME help component buffer
overflow"). The 'Help and Support Center' component included in
Windows ME contains a buffer overflow in the handling of 'hcp://'
URLs that allows a malicious Web site or e-mail to execute arbitrary
code on the user's system.
=46AQ and patch:
http://www.microsoft.com/security/security_bulletins/ms03-006.asp
Source: Microsoft
http://archives.neohapsis.com/archives/microsoft/2003-q1/0009.html
=2D --=20
If you listen on a quiet nite you, can hear
the sound of a Windows 2000 Server reboot.
=2D----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE+aAsMrnzt99/TR+cRAhRSAJ4wlKo+Tk6dJdxb0tGcgd88IAN7lACg5J53
9iL1zUIjoAw8WVP7SnSCH5w=3D
=3Dsiga
=2D----END PGP SIGNATURE-----