| Forum Home | ||||
| PC World Chat | ||||
| Thread ID: 110688 | 2010-06-28 06:49:00 | MsgBox VBScript function | kusuma (15850) | PC World Chat |
| Post ID | Timestamp | Content | User | ||
| 1114140 | 2010-06-28 06:49:00 | Using the MsgBox VBScript function in an html file, an attacker can create a dialog box prompting the user to hit F1, something that is likely not difficult to do with a message such as “Internet Explorer encountered an error, press F1 to continue”. The MsgBox function is important as its fourth argument specifies a helpfile parameter, basically which hlp or chm file to launch when the user asks for help via F1. [edit: spam links removed] |
kusuma (15850) | ||
| 1114141 | 2010-06-28 06:51:00 | The flaw has been found in systems running Windows 2000, Windows XP, and Windows Server 2003. Microsoft says the issue is tied to the way that Visual Basic Scripting, or VBScript -- which is used for executing functions found in web pages -- is linked with Windows Help files.In the case of an attack, a victim using Windows 2000, XP, or Server 2003 would only need to visit a malicious web site where a dialog box would be presented, enticing users to press their F1 key. Once the key is pressed, the system is hijacked and malware is installed on the computer. [edit: spam links removed] |
kusuma (15850) | ||
| 1114142 | 2010-06-28 06:52:00 | Here's how this attack might go down. The attacker lures you to a specially crafted website, perhaps via an enticing email message or a link in an IM message. If you visit the malicious website, a dialog box pops up asking you to press F1 for whatever reason. If you press F1, the malicious code on the site exploits this flaw to install malware on your computer, using your privileges. [edit: spam links removed] |
kusuma (15850) | ||
| 1114143 | 2010-06-28 06:56:00 | huh? Mike. |
Mike (15) | ||
| 1114144 | 2010-06-28 06:57:00 | Its a spammer its been reported | Speedy Gonzales (78) | ||
| 1114145 | 2010-06-28 07:39:00 | I left the threads (after merging them all into this one) because of the irony. Did he/she seriously not notice what this forum is called?! :rolleyes: BTW, ignore the actual posts as it was just a spammer in action and not someone trying to be helpful. Spammers don't count as people. :p |
Jen (38) | ||
| 1114146 | 2010-06-28 07:41:00 | Did he/she seriously not notice what this forum is called?! That's why the spambot chose this site. |
bob_doe_nz (92) | ||
| 1114147 | 2010-06-28 07:44:00 | That is what I originally thought too, but the same message with the 'Press F1' has been posted elsewhere on the net (busy wee spammer). I think we just got lucky rather than receiving special attention. :wub | Jen (38) | ||
| 1 | |||||