• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

XP exploit. Users should read.

S

Saltin

Platinum Member
First my obligatory request to all you die-hard *nixers. Please keep your comments to yourself regarding "blah blah another XP loophole". We can check bugtraq and find lots of vulnerabilites for any OS. Thank you!

Anyhow, Here be the link for those who want the full story. If you don't and just want to know what's up, try this....

Make a test.txt file in your C:\Winows directory.

Copy and paste this URL into IE.

hcp://system/DFS/uplddrvinfo.htm?file://c:\windows\test.txt

A help window will open, close it up. Go look for your file. It isn't there

SP1 will address this, but in the meanwhile, you may want to follow the directions in the link. It would be very easy for a malicious individual to place a link on a website that would exploit this.
 
You can fix this bug really easily by renaming (or deleting, I suppose) the file uplddrvinfo.htm in \windows\PCHEALTH\HELPCTR\System\DFS

OR if you don't want to make the file not available, comment out (add // at the beginning of the line) these two lines (do a search using notepad):
oFSO.DeleteFile( sFile );
oFav.Delete( oThisFav );
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top