News & Events
Contact Us
Support
Partner Login

Partner Login

The PowerShift Program puts a world of resources at your fingertips.

Login Page:
http://powershift.netgear.com/

Apply to be a Partner:
http://powershift.netgear.com/et.cfm?eid=register

Forgot Password:
http://powershift.netgear.com/et.cfm?eid=resend_password

Not Yet a Partner? Learn More
Worldwide
Select A Location
- Austria
- China
- France
- Germany
Language or region not listed above?
Visit our Contact Us page to locate detailed regional contact information using our worldwide map.

Check back soon for deployment of more international websites.
All NETGEAR® Products

All Netgear® Products

From wireless routers and adapters to Layer 3 Managed Switches we have the networking equipment you need for your home or small business.

Visit NETGEAR.com

Products
Explore the ProSecure™ Series Family
ProSecure® UTM Series:
A comprehensive all-in-one gateway security solution for growing businesses needing a firewall
ProSecure® STM Series:
An integrated content security solution for medium sized businesses with an existing firewall
Get Started Today
ProSecure® License Keys

Purchase your license key(s) today for your ProSecure® STM and UTM appliances.
- Purchase Now
Technology
Resources
Partners
Customers
Community
About NETGEAR

Security Blog

New Microsoft Help and Support Center Vulnerability Discovered

Posted By Netgear Threat Lab at 2:05 PM, June 30, 2010

On June 10th, security researcher Tavis Ormandy discovered and released to the public details on a new vulnerability in the Microsoft Windows Help Center. We have since found a lot of new malware trying to take advantage of this loophole.

HCP is a protocol similar to HTTP. It can use a URL to open documents wthin Windows Help and Support Center. Help and Support Center (HSC) is the built-in help function of Windows which provides users with the ability to download and install software updates and other help documents. Internet Explorer by default can use the protocol to open the Help and Support Center.

In this case, if the user opens a Web page which exploits the HCP vulnerability, hidden malicious scripts automatically run and attempt to infiltrate the system.

Another way malicious attackers attack is embedding the HCP exploit code into a number of advanced audio formats files. When the user opens the audio stream file, the operating system also will be subject to malicious intrusions.

As this vulnerability was announced recently, there is no existing patch yet. We recommend users to temporarily shut down the HCP related functions manually until a patch is released.

Posted by: Netgear Threat Lab at 2:05 PM
Categories: Netgear Threat Lab

No TrackBacks

TrackBack URL: http://prosecure.netgear.com/cgi-bin/mt/mt-tb.cgi/97

Comments

Lijit Search

Security Blog

New Microsoft Help and Support Center Vulnerability Discovered

No TrackBacks

Comments

Categories

Recent Posts

Monthly Archives

ProSecure™ UTM9S

Tolly Report

On Demand Demos

SC Magazine Rating

Risk FREE 30 Day Trial

Customer Feedback

Review

Request More Information

Customer Feedback