Add or Remove Programs
entry for Windows XP-Hotfix - KB891781
. This critical security update addresses a vulnerability in the DHTML Editing Component ActiveX Control.A cross-domain vulnerability exists in the Microsoft Dynamic HTML (DHTML) Editing Component ActiveX control that could allow information disclosure or remote code execution on an affected system. An attacker could exploit the vulnerability by constructing a malicious Web page that could potentially allow remote code execution if a user visited that page. An attacker who successfully exploited this vulnerability could take complete control of an affected system.