Saturday, 12 June 2010

Microsoft Help Centre Exploit

Microsoft help centre could be exploited for a zero day vulnerability according to this disclosure.
Help centre is Microsoft's application to access online help.Using this application it is possible to access url's of the help documents. One of the implementation errors in handling url/escape sequence handling leads to remote code execution.

Microsoft advisory can be found here.

No comments:

Post a Comment