Home » News » Vulnerabilities » Be Careful With F1!

Be Careful With F1!

By Bryan on March 3, 2010 | Vulnerabilities, Microsoft, Windows 2000, Windows XP, Windows Server 2003, Internet Explorer, VBScript, F1 key Be Careful With F1!

Microsoft announced one more IE vulnerability in its advisory . This unpatched vulnerability can affect users of Windows 2000, Windows XP, and Windows Server 2003 that running Internet Explorer. VBScript flaw can be used to run malicious code. Attacker can create a web page that displays an exact dialog box with a suggestion to press F1 key. This accomplishment can terminate malicious code on a victim computer.

Microsoft claims at its advisory : “Microsoft is concerned that this new report of a vulnerability was not responsibly disclosed, potentially putting computer users at risk. We continue to encourage responsible disclosure of vulnerabilities. We believe the commonly accepted practice of reporting vulnerabilities directly to a vendor serves everyone's best interests. This practice helps to ensure that customers receive comprehensive, high-quality updates for security vulnerabilities without exposure to malicious attackers while the update is being developed.” 

More Vulnerabilities news

Denial-of-service flaw is fixed by Oracle

Denial-of-service flaw is fixed by Oracle

Recently, Oracle released a patch which fixed denial-of-service vulnerability in the Oracle WebLogic Server, Application Server and iPlanet Web Server. In a security bulletin Oracle warned that "vulnerability may be remotely exploitable without authentication, i.e., it may be exploited over a network without the need for a username and password." Oracle pointed out that a fix for the same vulnerability in the GlassFish Server was released last month. Read more.


News categories

Latest news

Related news