From The Register on 09/11/02:Originally Posted by Spot
"A malicious Win-XP Help Center request can easily and silently delete the contents of any directory on your Windows machine, we've learned. Worse, MS has rolled the fix silently into SP1 without making a public announcement.
...The hole was discovered by Shane Hird of Distributed Systems Technology Centre, who first reported it to MS on 25 June 2002."
So much for Trustworthy Computing(TM)
And yet again.....
Keystrokes, including passwords, can be sniffed when using Windows Terminal Server or the XP remote control feature. MS has rolled a fix silently into SP1 without making any public statement on this serious problem.
...This hole was discovered by Ben Cohen of security developer Skygate, who reported it to MS on April 16.
Trustworthy Computing Indeed(TM).