Lucene search
+L

48 matches found

FreeBSD
FreeBSD
added 2007/07/27 12:0 a.m.37 views

vim -- Command Format String Vulnerability

A Secunia Advisory reports: A format string error in the "helptagsone" function in src/excmds.c when running the "helptags" command can be exploited to execute arbitrary code via specially crafted help files...

6.8CVSS7.4AI score0.04179EPSS
Exploits1References1
securityvulns
securityvulns
added 2005/06/15 12:0 a.m.32 views

Microsoft Windows HTML Help files parsing buffer overflow

Heap overflow on HTML help .chm files structure parsing...

2.4AI score
Exploits0References3
Symantec
Symantec
added 2004/10/12 12:0 a.m.18 views

Microsoft Internet Explorer Unspecified showHelp Zone Bypass Vulnerability

Description Microsoft Security Bulletin MS04-038 includes fixes to address an unspecified vulnerability in Internet Explorer that may permit elevation of zone privileges by bypassing from the Internet Zone to the Local Zone. The vendor has stated that additional security verifications have been...

7AI score
Exploits0References1Affected Software1
CERT
CERT
added 2002/04/10 12:0 a.m.28 views

Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in IIS Help Files search facility

Overview Visitors to web sites that use Microsoft IIS 5.0 and 5.1 are vulnerable to cross-site scripting attacks through the IIS help facility. Description Cross-site scripting is a form of attack in which an intruder leverages the trust between a victim and a web-site the victim trusts. Quoting...

7.5CVSS6AI score0.31027EPSS
Exploits0References1
CERT
CERT
added 2000/09/26 12:0 a.m.61 views

HHControl Object (showHelp) may execute shortcuts embedded in help files

Overview The HHCtrl ActiveX control has a serious vulnerability that allows remote intruders to execute arbitrary code, if the intruder can cause a compiled help file CHM to be stored "locally." Microsoft has released a security bulletin and a patch for this vulnerability, but the patch does not...

5.1CVSS6.2AI score0.06848EPSS
Exploits0References11
NVD
NVD
added 2000/03/01 5:0 a.m.21 views

CVE-2000-0201

The window.showHelp method in Internet Explorer 5.x does not restrict HTML help files .chm to be executed from the local host, which allows remote attackers to execute arbitrary commands via Microsoft Networking...

5.1CVSS7.2AI score0.06848EPSS
Exploits0References1
exploitpack
exploitpack
added 1999/12/10 12:0 a.m.14 views

Microsoft Windows 9598NT 4.0 - Help File Backdoor

Microsoft Windows 9598NT 4.0 - Help File Backdoor source: https://www.securityfocus.com/bid/868/info The help files for the Windows Help system .cnt, .hlp can be edited so that they run an arbitrary executable when selected by a user. The executable will run at the privelege level of the user. Th...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 1999/12/10 12:0 a.m.23 views

Microsoft Windows 95/98/NT 4.0 - Help File Backdoor

source: https://www.securityfocus.com/bid/868/info The help files for the Windows Help system .cnt, .hlp can be edited so that they run an arbitrary executable when selected by a user. The executable will run at the privelege level of the user. The .cnt files are like tables of contents that tell...

7AI score
Exploits0
Rows per page
Query Builder