CVE-2003-0009

Name of the Vulnerable Software and Affected Versions Microsoft Windows Me

Description A cross-site scripting (XSS) issue exists in the Help and Support Center, allowing remote attackers to execute arbitrary script in the Local Computer security context. This is achieved via an hcp:// URL with the malicious script in the topic parameter.

Recommendations For Microsoft Windows Me, consider disabling the Help and Support Center or restricting access to it until a fix is available. Avoid using the topic parameter in hcp:// URLs to minimize the risk of exploitation.