2 matches found
Microsoft Windows itss.dll CHM File Handling Heap Corruption (CVE-2006-2297)
Microsoft Windows operating systems contain numerous libraries that facilitate the processing of the many file formats that are recognized by standard Windows installations. One such file format is the Microsoft compiled help files, known as CHM. A vulnerability exists in the Microsoft Windows...
CVE-2006-2297
The CVE-2006-2297 entry documents a heap-based buffer overflow in Microsoft Infotech Storage System Library (itss.dll) that can be triggered by a crafted CHM/ITS file during decompiling, enabling user-assisted arbitrary code execution. Connected advisories (e.g., CPAI-2006-195) describe the flaw ...