Just five days after Google researcher Tavis Ormandy released details of a critical vulnerability affecting Windows XP and Windows Server 2003, malware authors have struck, exploiting the flaw to plant malware on Windows machines.The attacks, described by Microsoft as “limited,” are being distributed on rigged Web sites drive-by downloads.“Windows Server 2003 customers are not currently at risk from the Win Help issue based on the attack samples we have analyzed,” according to Microsoft’s security response center.The attacks, are only targeting Windows XP computers with the HCP protocol enabled.
ONE-CLICK FIX-IT
In the absence of a patch, Microsoft is recommending that affected Windows customers use this one-click Fix-It tool to unregister the problematic “hcp://” protocol.
This can also be manually done by following these simple directions:
- Click Start, and then click Run.
- Type regedit, and then click OK.
- Expand HKEY_CLASSES_ROOT, and then highlight the HCP key.
- Right-click the HCP key, and then click Delete.
Impact of Workaround: Unregistering the HCP protocol will break all local, legitimate help links that use hcp://. For example, links in Control Panel may no longer work.
via Windows XP zero-day under attack; Use Microsofts “fix-it” workaround | ZDNet.
Filed under: Instructional, PC Security |
AskBillFirst - Non-Tech Speak Technology Blog 
[…] AskBillFirst Windows XP zero-day under attack; Use Microsofts “fix-it” workaround […]