{"id":382516,"date":"2010-03-02T23:40:00","date_gmt":"2010-03-03T04:40:00","guid":{"rendered":"Gizmodo-5484223"},"modified":"2010-03-02T23:40:00","modified_gmt":"2010-03-03T04:40:00","slug":"the-windows-xp-f1-bug-hijacking-computers-one-help-menu-at-a-time-security","status":"publish","type":"post","link":"https:\/\/mereja.media\/index\/382516","title":{"rendered":"The Windows XP F1 Bug: Hijacking Computers One Help Menu At A Time [Security]"},"content":{"rendered":"<p><img decoding=\"async\" src=\"http:\/\/cache.gawkerassets.com\/assets\/images\/4\/2010\/03\/500x_533180778_cb919b0416.jpg\" class=\"left image500\" width=\"500\"  title=\"The Windows XP F1 Bug: Hijacking Computers One Help Menu At A Time\"\/>So there&#8217;s this tiny unpatched bug in VBScript that lets sneaky websites run malicious code on machines running <a class=\"autolink\" title=\"Click here to read more posts tagged #internetexplorer\" href=\"http:\/\/gizmodo.com\/tag\/internetexplorer\/\">Internet Explorer<\/a> on <a class=\"autolink\" title=\"Click here to read more posts tagged #windowsxp\" href=\"http:\/\/gizmodo.com\/tag\/windowsxp\/\">Windows XP<\/a>. It&#8217;s triggered when you try to access the help menu by hitting the F1 key. Whoops.<\/p>\n<p>According to a recent Microsoft security advisory:<\/p>\n<blockquote>\n<p>The vulnerability exists in the way that VBScript interacts with Windows Help files when using Internet Explorer. If a malicious Web site displayed a specially crafted dialog box and a user pressed the F1 key, arbitrary code could be executed in the security context of the currently logged-on user.<\/p>\n<\/blockquote>\n<p>This means that all someone with ill intentions needs to do is create a website which has a somewhat convincing popup prompt to coax you into hitting F1. And tada! You&#8217;ve allowed him or her to run some kind of code on your machine.<\/p>\n<p>It&#8217;ll be a while before a patch is available for this bug, but in the meantime Microsoft suggests that you protect yourself by not pressing the F1 key if a Web site tells you to. [<a href=\"http:\/\/www.microsoft.com\/technet\/security\/advisory\/981169.mspx\">Microsoft<\/a> via <a href=\"http:\/\/www.computerworld.com\/s\/article\/9164038\/Microsoft_Don_t_press_F1_key_in_Windows_XP\">Computer World<\/a> via <a href=\"http:\/\/tech.slashdot.org\/story\/10\/03\/02\/1924237\/Microsoft-Says-Dont-Press-the-F1-Key-In-XP?from=rss&#038;utm_source=feedburner&#038;utm_medium=feed&#038;utm_campaign=Feed%3A+Slashdot%2Fslashdot+%28Slashdot%29\">Slashdot<\/a>]<\/p>\n<p><i>Picture by <a href=\"http:\/\/www.flickr.com\/photos\/karlalvin\/533180778\/\">Karl Alvin<\/a><\/i><\/p>\n<p><br clear=\"both\" style=\"clear: both;\"\/><br \/>\n<br clear=\"both\" style=\"clear: both;\"\/><br \/>\n<a href=\"http:\/\/ads.pheedo.com\/click.phdo?s=21b8033c58188a22c8d3f138ad93e309&#038;p=1\"><img decoding=\"async\" alt=\"\" style=\"border: 0;\" border=\"0\" src=\"http:\/\/ads.pheedo.com\/img.phdo?s=21b8033c58188a22c8d3f138ad93e309&#038;p=1\"\/><\/a><br \/>\n<img loading=\"lazy\" decoding=\"async\" alt=\"\" height=\"0\" width=\"0\" border=\"0\" style=\"display:none\" src=\"http:\/\/a.rfihub.com\/eus.gif?eui=2226\"\/><\/p>\n<div class=\"feedflare\">\n<a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=qUC8YvLYovM:vxs-Mn01BOg:H0mrP-F8Qgo\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?d=H0mrP-F8Qgo\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=qUC8YvLYovM:vxs-Mn01BOg:yIl2AUoC8zA\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?d=yIl2AUoC8zA\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=qUC8YvLYovM:vxs-Mn01BOg:D7DqB2pKExk\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?i=qUC8YvLYovM:vxs-Mn01BOg:D7DqB2pKExk\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=qUC8YvLYovM:vxs-Mn01BOg:V_sGLiPBpWU\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?i=qUC8YvLYovM:vxs-Mn01BOg:V_sGLiPBpWU\" border=\"0\"><\/img><\/a>\n<\/div>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~r\/gizmodo\/full\/~4\/qUC8YvLYovM\" height=\"1\" width=\"1\"\/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>So there&#8217;s this tiny unpatched bug in VBScript that lets sneaky websites run malicious code on machines running Internet Explorer on Windows XP. It&#8217;s triggered when you try to access the help menu by hitting the F1 key. Whoops. According to a recent Microsoft security advisory: The vulnerability exists in the way that VBScript interacts [&hellip;]<\/p>\n","protected":false},"author":1556,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[],"class_list":["post-382516","post","type-post","status-publish","format-standard","hentry","category-news"],"_links":{"self":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts\/382516","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/users\/1556"}],"replies":[{"embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/comments?post=382516"}],"version-history":[{"count":0,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts\/382516\/revisions"}],"wp:attachment":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/media?parent=382516"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/categories?post=382516"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/tags?post=382516"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}