Skip to main content
Microsoft Security Intelligence
Published Jun 10, 2010 | Updated Sep 15, 2017


Detected by Microsoft Defender Antivirus

Aliases: CVE-2010-1885 (other) Exploit:Win32/CrossSiteHCP.A (other) Exploit.HTML.CVE-2010-1885.a (Kaspersky) Exploit/Cve-2010-1885 (Norman) HTML/Exploit.CVE-2010-1885 (ESET) Exploit.Win32.CVE-2010-1885 (Ikarus) Exploit-CVE2010-1885 (McAfee) Mal/HcpExpl-A (Sophos) TROJ_HCPEXP.A (Trend Micro) Exploit.HTML.HCP.a (Sunbelt Software)


Exploit:Win32/CVE-2010-1885.A is a detection for a cross-site scripting method that exploits a vulnerability (CVE-2010-1885) in Windows Help and Support Center that could allow an attacker to run arbitrary code on the local computer.
Microsoft Security Advisory (2219475) provides additional guidance.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as Microsoft Security Essentials, or the Microsoft Safety Scanner. For more information about using antivirus software, see
Follow us