Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product.
A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user opens a
**.HPJ** file containing a long
**HLP** field in the
Do not open
**.HPJ** files from untrusted sources.
Exploit works on Microsoft Help Workshop 4.03 and requires the user to open the exploit file.