Help and Support Center in Microsoft Windows XP SP1 does not properly validate HCP URLs, which allows remote attackers to execute arbitrary code via quotation marks in an hcp:// URL, which are not quoted when constructing the argument list to HelpCtr.exe.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-04-16T04:00:00

Updated: 2024-08-08T02:12:34.413Z

Reserved: 2003-11-04T00:00:00

Link: CVE-2003-0907

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2004-06-01T04:00:00.000

Modified: 2024-11-20T23:45:46.537

Link: CVE-2003-0907

cve-icon Redhat

No data.