CVE-2005-1208

2005-06-14T04:00:00
ID CVE-2005-1208
Type cve
Reporter cve@mitre.org
Modified 2018-10-12T21:36:00

Description

Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a large size field that triggers a heap-based buffer overflow, as demonstrated using a "ms-its:" URL in Internet Explorer.