CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
93.3%
Integer underflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a malformed .hlp file, which leads to a heap-based buffer overflow.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | windows_2003_server | r2 | cpe:/o:microsoft:windows_2003_server:r2:sp1_beta_1:: |
microsoft | windows_xp | cpe:/o:microsoft:windows_xp::sp1:: | |
microsoft | windows_2003_server | standard | cpe:/o:microsoft:windows_2003_server:standard:sp1_beta_1:: |
microsoft | windows_2003_server | enterprise | cpe:/o:microsoft:windows_2003_server:enterprise:sp1_beta_1:: |
microsoft | windows_2000 | cpe:/o:microsoft:windows_2000::sp2:: | |
microsoft | windows_nt | 4.0 | cpe:/o:microsoft:windows_nt:4.0:sp6a:: |
microsoft | windows_nt | 4.0 | cpe:/o:microsoft:windows_nt:4.0:sp3:: |
microsoft | windows_nt | 4.0 | cpe:/o:microsoft:windows_nt:4.0:sp4:: |
microsoft | windows_2000 | cpe:/o:microsoft:windows_2000::sp1:: | |
microsoft | windows_2003_server | enterprise+64-bit | cpe:/o:microsoft:windows_2003_server:enterprise+64-bit::: |