jump to navigation

Vulnerability in Windows Help Center Being Actively Exploited: Over 10,000 Distinct Computers Reported Attack July 2, 2010

Posted by Randy Tyler in General.
Starting last week, Microsoft started seeing seemingly-automated, randomly-generated html and php pages hosting this (Windows Help Center) exploit and as of June 30, 2010, "… over 10,000 distinct computers have reported seeing this attack at least one time." See the following Microft Technet blog for exploit details.

To ensure you are protected from the above Windows Help Center vulnerability, please ensure you have applied one of the following workarounds:

1. Automatic: Mitigate this Windows Help Centre Vulnerability by Disabling the HCP (Help Center Protocol) Handler by applying the automated Microsoft "Fix it" Solution (Microsoft Fix it 50459) located at: 

2. Manual: Unregister the HCP (Help Center Protocol) Manually Using the Registry Editor as per the instructions at the following Microsoft Security Advisory URL:

Affected Windows Software

Windows XP Service Pack 2 and Windows XP Service Pack 3
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP2 for Itanium-based Systems

For further information about virtual volunteering, visit Online Volunteering Tips, Technology and Tools or Pioneering Online Volunteering Program Developer Randy Tyler

%d bloggers like this: