ID CVE-2006-4138Type cveReporter NVDModified 2008-09-05T17:08:57
Description
Multiple unspecified vulnerabilities in Microsoft Windows Help File viewer (winhlp32.exe) allow user-assisted attackers to execute arbitrary code via crafted HLP files.
{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4138", "history": [], "references": ["http://securityreason.com/securityalert/1382", "http://www.securityfocus.com/bid/19490", "http://www.securityfocus.com/archive/1/archive/1/443039/100/0/threaded", "http://www.securityfocus.com/archive/1/archive/1/443034/100/0/threaded"], "lastseen": "2016-09-03T07:23:36", "bulletinFamily": "NVD", "title": "CVE-2006-4138", "cpe": ["cpe:/a:microsoft:help_file_viewer"], "viewCount": 0, "id": "CVE-2006-4138", "hash": "f4ed53f9f5739965334a1bfa86d69d22966bc364fe6295a1432d98727843fc70", "description": "Multiple unspecified vulnerabilities in Microsoft Windows Help File viewer (winhlp32.exe) allow user-assisted attackers to execute arbitrary code via crafted HLP files.", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2006-4138"], "scanner": [], "modified": "2008-09-05T17:08:57", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2006-08-14T19:04:00", "enchantments": {"vulnersScore": 9.3}}
{"result": {"osvdb": [{"id": "OSVDB:29231", "type": "osvdb", "title": "Microsoft Windows Help File Viewer (winhlp32.exe) HLP File Arbitrary Code Execution", "description": "# No description provided by the source\n\n## References:\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0247.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0252.html\n[CVE-2006-4138](https://vulners.com/cve/CVE-2006-4138)\nBugtraq ID: 19490\n", "published": "2006-08-12T02:57:01", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://vulners.com/osvdb/OSVDB:29231", "cvelist": ["CVE-2006-4138"], "lastseen": "2017-04-28T13:20:25"}], "exploitdb": [{"id": "EDB-ID:28381", "type": "exploitdb", "title": "Microsoft windows xp/2000/2003 help Multiple Vulnerabilities", "description": "Microsoft Windows XP/2000/2003 Help Multiple Remote Vulnerabilities. CVE-2006-4138. Dos exploit for windows platform", "published": "2006-08-12T00:00:00", "cvss": {"score": 7.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.exploit-db.com/exploits/28381/", "cvelist": ["CVE-2006-4138"], "lastseen": "2016-02-03T08:02:11"}]}}
