quote:RiskHighDate Discovered05-11-2004DescriptionA security vulnerability has been reported in Microsoft Windows XP and Server 2003 operating systems. This issue exists in the Help and Support Center (HSC) and is due to how the feature handles HCP invocation URIs for DVD driver upgrades.This issue could be exploited from a malicious web page or HTML e-mail to cause a malicious executable to be run on a vulnerable system.