Microsoft Internet Explorer HTML Help File Code Execution Vulnerability patch 6-8-2000

Advertisement
Advertisement

Microsoft has released a patch that eliminates a security vulnerability in the HTML Help facility that ships with Microsoft® Internet Explorer. Under certain conditions,the vulnerability could allow a malicious web site to take inappropriate action on the computer of a visiting user. The HTML Help facility provides the ability to launch code viashortcuts included in HTML Help files. If a compiled HTML Help (.chm) file were referenced by a malicious web site, it could potentially be used to launch code on a visiting users computer without the users approval. Such code couldtake any actions that the user could take, including adding, changing or deleting data, or communicating with a remote web site. A web site could only invoke an HTML Help fileif it resided on a UNC share accessible from the users machine, or on the users machine itself. A firewall that blocks Netbios would prevent the former case from being exploited. Adhering to standard security practices wouldprevent the latter. In addition, an HTML Helpfile could only be invoked if Active Scriptingwas permitted in the Security Zone thatthe malicious users site resides in. Thepatch eliminates the vulnerability by onlyallowing an HTML Help file to use shortcuts ifthe help file resides on the local machine.

Microsoft has released a patch that eliminates ...

 
  • Microsoft Internet Explorer HTML Help File Code Execution Vulnerability patch 6-8-2000
  • 5am Code
  • Windows 9X, ME, NT, 2K, 2003, XP, Vista
  • Freeware
  • 1 Kb
  • 302
  • Free
 
 

Review Microsoft Internet Explorer HTML Help File Code Execution Vulnerability patch 6-8-2000

  • captcha
 


Utilities - Other software of 5am Code

  • 2007 Microsoft Office Suite Service Pack 1  v.1.0The 2007 Microsoft Office suite Service Pack 1 delivers important customer-requested stability and performance improvements, while incorporating further enhancements to user security. This service pack also includes all of the updates released for ...
  • 2007 Office System Converter: Microsoft Filter Pack  v.1.0Will install and register IFilters with the Microsoft Windows Indexing Service.The package will install and register IFilters with the Microsoft Windows Indexing Service. These IFilters are used by Microsoft Search products to index the contents of ...


Utilities - New Utilities software

  • Xopero Cloud Personal  v.3.9.5Xopero Cloud Personal secure backup and sync & share platform. An intuitive interface, simple backup configuration and Briefcase application to sync & share your data it offers you a quick and easy way to ensure the safety of your data.
  • Handy Backup Server Network  v.7.13.0Handy Backup Server Network lets you control backup and recovery of all computers and servers in your network from a single management console. Back up files, e-mails, HDDs, SQL databases, Exchange Servers and other data on a client-server scheme.
  • Privacy Eraser Portable  v.4.34Privacy Eraser is an all-in-one privacy suite that protects your privacy by cleaning up all your Internet history tracks and past computer activities.
  • PDF Repair  v.3.0SysInfo PDF Recovery software repairs corrupted, damaged and inaccessible PDF files easily. This software extracts all the crucial data like texts, images, hyperlinks, tables, charts, etc. from the corrupt or damaged PDF files.
  • Microsoft Internet Explorer Active Setup Control Vulnerability patchMicrosoft has released a patch that eliminates a vulnerability that could allow a malicious user to embed an unsafe executable within an email and disguise it as a safe type of attachment. Through a complicated series of steps, the unsafe executable ...
  • Microsoft Internet Explorer Image Source Redirect Vulnerability patch  v.1The vulnerability could allow amalicious web site operator to read - butnot add, change or delete - certain types offiles on the computer of a visiting user.When a web server navigates a window fromone domain into another one, the IE securitymodel ...