If a malicious Web site displayed a specially crafted dialog box and a user pressed the F1 key, arbitrary code could be executed in the security context of the currently logged-on user.
Seriously, what the hell? Microsoft: Don’t press F1 key in Windows XP
