Microsoft is reporting that an unpatched security vulnerability in VBScript exposes users to the installation of malicious software. According to a release from Microsoft, affected operating systems include Windows XP, Windows 2000, and Windows Server 2003 used in conjunction with Internet Explorer.
When a user accesses the malicious website, they are prompted with a message that asked them to press the F1 key on their keyboards. After pressing the F1 key the malicious code from the website would be launched.
Microsoft’s immediate fix is, don’t press the F1 key.
Microsoft Advisory
Posted by
Mike Wright
