Microsoft windows xp/2000/2003 help Multiple Vulnerabilities

ID EDB-ID:28381
Type exploitdb
Reporter Benjamin Tobias Franz
Modified 2006-08-12T00:00:00


Microsoft Windows XP/2000/2003 Help Multiple Remote Vulnerabilities. CVE-2006-4138. Dos exploit for windows platform


The Microsoft Windows Help File viewer (winhlp32.exe) is prone to multiple remote vulnerabilities.

These vulnerabilities present themselves when the application handles specially crafted Windows Help (.hlp) files.

A successful attack may let the attacker crash the application or execute arbitrary code in the context of a vulnerable user who opens a malicious file.

Specific information regarding affected versions of Microsoft Windows is currently unavailable.

Update: Since help files can inherently execute arbitrary malicious code, this BID is being retired.