F1 vulnerability in Internet Explorer.

[The_Unbeliever]

Yay.

Gotta love braindead Internet Explorer more and more.

http://www.theregister.co.uk/2010/03/03/ms_confirms_ie_bug/

Microsoft has confirmed that an unpatched Internet Explorer vulnerability makes it potentially dangerous to press F1 if you are running earlier versions of Windows.

A security bug in the VBScript technology bundled with Internet Explorer means that it might be possible to create a web site that displays a specially crafted dialog box that pushes malware providing a victim is tricked into pressing the F1 (help menu) key while viewing a booby-trapped site using Internet Explorer. The novel exploit technique works on older versions of Windows (Win 2000, XP and Server 2003). As previously reported, Vista, Windows 7 and Windows Server 2008 are immune.

Ubersoft.net sums it up better :

 

[Park@82]

I better go and upgrade my folks to ff.