Tavis Ormandy released an exploit for the “Windows Help Center” of Windows XP ServicePack 2 and ServicePack 3.
By just clicking on an malicious link you can get exploited by an attacker.
The exploit uses a security hole in the Help Center of Windows XP. It’s a Cross-Site Script attack. For further informations goto:
- CVE-2010-1885
- [Full-disclosure] Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly
To prevent yourself against this attack Microsoft say you should delete the association in your registry.
The next lines and the video shows how this attacks looks like and for some of you how to use it 
- update Metasploit to rev. r9513
- use windows/browser/ms10_xxx_helpctr_xss_cmd_exec as exploit
- set your payload
- set options like LHOST and LPORT
- fire up the exploit
- trick the victim to get on the malicious site
- GAME OVER
This Video show how to exploit the target
Vulnerability in Windows Help Center CVE-2010-1885 from hardez on Vimeo.
To prevent yourself against this attack do the following steps:
- create a new text file on you desktop
- open it an past the following text
Windows Registry Editor Version 5.00
[-HKEY_CLASSES_ROOT\HCP]
- save this file as helpcenter.reg and choose as fileformat all files
- open the file
- now your safe
and this show how to prevent against the attack
How to prevent against Vulnerability in Windows Help Center CVE-2010-1885 from hardez on Vimeo.
[...] [...]
cooooooooool
but what the name of the song ??
greet site
It was from jamendo.com but this time I forgot to note the artist.
I will post it on monday!