Microsoft Help Workshop .CNT file buffer overflow

Added: 01/31/2007
CVE: CVE-2007-0352
BID: 22100
OSVDB: 31898

Background

Microsoft Help Workshop is a standard component of Microsoft Visual Studio and is also available as a standalone product.

Problem

A buffer overflow vulnerability in Microsoft Help Workshop allows command execution when a user opens a Help Contents (.CNT) file containing a long, specially crafted line.

Resolution

Do not open .CNT files from untrusted sources.

References

<http://www.securityfocus.com/archive/1/457210&gt;

Limitations

Exploit works on Microsoft Help Workshop 4.03 and requires the user to open the exploit file.

Platforms

Windows