Vulnerabilities > CVE-2002-0974 - Unspecified vulnerability in Microsoft Windows XP
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Help and Support Center for Windows XP allows remote attackers to delete arbitrary files via a link to the hcp: protocol that accesses uplddrvinfo.htm.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 1 |
Exploit-Db
description | Microsoft Windows XP HCP URI Handler Abuse Vulnerability. CVE-2002-0974. Remote exploit for windows platform |
id | EDB-ID:21717 |
last seen | 2016-02-02 |
modified | 2002-08-15 |
published | 2002-08-15 |
reporter | Shane Hird |
source | https://www.exploit-db.com/download/21717/ |
title | Microsoft Windows XP HCP URI Handler Abuse Vulnerability |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS02-060.NASL |
description | There is a security vulnerability in the remote Windows XP Help and Support Center which can be exploited by an attacker to delete arbitrary files on this host. To do so, an attacker needs to create malicious web pages that must be visited by the owner of the remote system. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11286 |
published | 2003-02-28 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11286 |
title | MS02-060: Flaw in WinXP Help center could enable file deletion (328940) |
code |
|
References
- http://www.iss.net/security_center/static/9878.php
- http://www.securityfocus.com/bid/5478
- http://www.osvdb.org/3001
- http://marc.info/?l=bugtraq&m=102942549832077&w=2
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-060
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ328940