Description
Help and Support Center for Windows XP allows remote attackers to delete arbitrary files via a link to the hcp: protocol that accesses uplddrvinfo.htm.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Shane Hird · textremotewindows
https://www.exploit-db.com/exploits/21717
References (6)
Core 6
Core References
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-060
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=102942549832077&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/5478
Vendor Advisory vendor-advisory
x_refsource_mskb
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ328940
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/3001
Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9878.php
Scores
EPSS
0.5712
EPSS Percentile
98.2%
Details
Status
published
Products (1)
microsoft/windows_xp
Published
Sep 24, 2002
Tracked Since
Feb 18, 2026