Skip to content

J-Security Center

Latest Attack Object Updates
  • IDP Daily Update #1214
    posted: 07/17/08
  • NSM Daily Update #1214
    posted: 07/17/08
  • Deep Inspection 5.3r5 and above, 5.4, 6.0 #1214
    posted: 07/17/08
  • Deep Inspection 5.1, 5.2, 5.3r4 and below #1201
    posted: 07/17/08
  • Deep Inspection 5.0 #1132
    posted: 04/01/08
  • Antivirus
    posted: 07/17/08
Microsoft Security Bulletins

May 2004

Prior Updates:

2008 |July |June |May |April |March |February |January
2007 |December |November |October |September |August |July |June |May |April |March |February |January
2006 |December |November |October |September |August |July |June |May |April |March |February |January
2005 |December |November |October |September |August |July |June |May |April |March |February |January
2004 |December |November |October |September |August |July |June |May |April |March |February |January
2003 |December |November |October

May 2004

Microsoft Security Bulletin MS04-015

Vulnerability in Help and Support Center Could Allow Remote Code Execution (840374)

Severity: Important
Vulnerabilities:
  • Help and Support Center Vulnerability - CAN-2004-0199
    A remote code execution vulnerability exists in the Help and Support Center because of the way that it handles HCP URL validation. An attacker could exploit the vulnerability by constructing a malicious HCP URL that could potentially allow remote code execution if a user visited a malicious Web site or viewed a malicious e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system. However, significant user interaction is required to exploit this vulnerability.