David Kirkpatrick

March 19, 2010

If your browser is Microsoft’s Internet Explorer …

Filed under: Business, Technology — Tags: , , , , , — David Kirkpatrick @ 2:10 am

don’t hit the F1 key.

Just one more reason to go with Google Chrome.

From the first link:

Microsoft Releases Security Advisory to Address VBScript Vulnerability

added March 2, 2010 at 08:36 am
Microsoft has released a security advisory to address a vulnerability in VBScript. The advisory indicates that this vulnerability exists in the way that VBScript interacts with Windows Help files when using Internet Explorer. By convincing a user to view a specially crafted HTML document (web page, HTML email, or email attachment) with Internet Explorer and to press the F1 key, an attacker could run arbitrary code with the privileges of the user running the application.

US-CERT encourages users and administrators to do the following to help mitigate the risks:

  • Review Microsoft Security Advisory 981169.
  • Review the Microsoft Security Research & Defense blog entry regarding this issue.
  • Review US-CERT Vulnerability Note VU#612021.
  • Refrain from pressing the F1 key when prompted by a website.
  • Restrict access to the Windows Help System.

US-CERT will provide additional information as it becomes available.

Leave a Comment »

No comments yet.

RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Create a free website or blog at WordPress.com.

%d bloggers like this: