BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
IE HHCTRL exploit still usable even after patch Jan 18 2005 04:53PM
Valentin Avram (vavram gecadnet ro)
Hi everybody.

Just wanted to point out that the patch Microsoft released to take care
of the HHCTRL.OCX vulnerability (MS05-001) is fixing just part of the
problem.

At least Windows XP Service Pack 1 and Windows 2000 Service Pack 4 are
still vulnerable to exploiting the HHCTRL vulnerability, by...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus