Lucene search
HistoryJan 15, 2009 - 5:30 p.m.
CVE-2009-0133
cve-2009-0133
microsoft
html help workshop
buffer overflow
arbitrary code execution
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.635 Medium
EPSS
Percentile
97.9%
Buffer overflow in Microsoft HTML Help Workshop 4.74 and earlier allows context-dependent attackers to execute arbitrary code via a .hhp file with a long “Index file” field, possibly a related issue to CVE-2006-0564.
Affected configurations
Node
microsofthtml_help_workshopMatch4.74
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:html_help_workshop | microsoft html help workshop | eq | 4.74 |
Related
nvd
nvd
CVE-2009-0133
2009-01-15 17:30:00
CVE-2006-0564
2006-02-06 23:02:00
prion
prion
Buffer overflow
2009-01-15 17:30:00
Stack overflow
2006-02-06 23:02:00
cvelist
cvelist
CVE-2009-0133
2009-01-15 17:00:00
CVE-2006-0564
2006-02-06 23:00:00
openvas
openvas
Microsoft HTML Help Workshop buffer overflow vulnerability
2009-01-19 00:00:00
Microsoft HTML Help Workshop buffer overflow vulnerability
2009-01-19 00:00:00
packetstorm
packetstorm
HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit
2009-12-31 00:00:00
HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit
2009-12-31 00:00:00
cve
cve
CVE-2006-0564
2006-02-06 23:02:00
cert
cert
Microsoft HTML Help Workshop buffer overflow
2006-02-13 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.635 Medium
EPSS
Percentile
97.9%
Related for CVE-2009-0133