LINKS
INSTRUCTION
STRINGS
ACCESSORIES
MUSIC
 The Steel Guitar Forum Store 
Our Online Store
b0b's Steel Links

The Steel Guitar Forum

Help Search Join Private Messages Log in


Post new topic XP Attack against Microsoft Help and Support Center Viewer
Reply to topic
Forum Index > Computers Next oldest topic :: Next newest topic
Author Topic:  XP Attack against Microsoft Help and Support Center Viewer
Wiz Feinberg


From:
Mid-Michigan, USA
Post  Posted 24 Oct 2008 1:39 pm    
Reply with quote
XP users beware: highly dangerous attack gives hackers immediate control.

Symantec today reported a new kind of attack that is exceptionally dangerous using Microsoft Help and Support Center Viewer. With this attack, hackers gain immediate access to the victims computer, rather than having to figure out a way to get the attack code to load (access to a start-up file, a reboot, social engineering).

An attacker tricks a victim into visiting a Web page that loads a binary file of malware via an arbitrary file-overwrite. It also overwrites a help system file, which has the power of executing scripts. The attacker uses this to execute the malicious binary file. Symantec says:
Quote:
"It's worth noting at this point that in order for this attack to be successful the user must be logged in with Administrator privileges. However, since the standard Windows XP setup on stand-alone systems often has Administrator privileges enabled, and most users don't follow best practices to set up a limited user for general use, this attack may be possible on a large number of machines."

_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog
View user's profile Send private message Send e-mail Visit poster's website
Forum Index > Computers Next oldest topic :: Next newest topic
  Reply to topic

All times are GMT - 8 Hours
Jump to:  

Our Online Catalog
Strings, CDs, instruction,
steel guitars & accessories
www.SteelGuitarShopper.com
Please review our Forum Rules and Policies

Steel Guitar Forum LLC
PO Box 237
Mount Horeb, WI 53572 USA


Click Here to Send a Donation

Email admin@steelguitarforum.com for technical support.

Powered by phpBB © 2001, 2005 phpBB Group
BIAB Styles
Ray Price Shuffles for
Band-in-a-Box
by Jim Baron
HTTP