2 matches found
Microsoft Windows HLP File Handling Heap Buffer Overflow (CVE-2007-1912)
Microsoft Windows includes a standard Help system to assist the user working with applications. The WinHelp system, first introduced with Microsoft Windows 3.1, allows a developer to create a searchable document with a table of contents, images, hyper-links and other features. The developer may...
CVE-2007-1912
CVE-2007-1912 relates to a heap-based buffer overflow in Microsoft Windows’ Help system (WinHelp) triggered by specially crafted .HLP files. The connected advisory CPAI-2007-254 describes a boundary/heap overflow in handling HLP files that could allow a remote attacker to inject and execute arbit...