Microsoft Windows XP/2000 - Help File Relative Path Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38661/info Microsoft Windows is prone to a remote command-execution vulnerability because it opens help files from unsafe locations. An attacker could exploit this issue by enticing a victim to load help files when workin...

CVE-2012-1458

The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the...

Microsoft VBS code execution

If F1 is pressed in dialog window, help file controlled by attacker...

MS10-022: Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (981169)

The installed version of the VBScript Scripting Engine allows an attacker to specify a Help file location when displaying a dialog box on a web page. If a user can be tricked into pressing the F1 key while such a dialog box is being displayed, an attacker can leverage this to cause the Windows He...

Microsoft Windows XP/2000 - Help File Relative Path Remote Command Execution

source: https://www.securityfocus.com/bid/38661/info Microsoft Windows is prone to a remote command-execution vulnerability because it opens help files from unsafe locations. An attacker could exploit this issue by enticing a victim to load help files when working in a directory containing crafte...

Ubuntu Update for vim vulnerability USN-505-1

Ubuntu Update for Linux kernel vulnerabilities USN-505-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5051.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for vim vulnerability USN-505-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.n...

DEBIAN-CVE-2008-1389

libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service application crash via a malformed CHM file, related to an "invalid memory access."...

Mandrake Linux Security Advisory : vim (MDKSA-2007:168)

A format string vulnerability in the helptags support in vim allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file. Updated packages have been patched to prevent this issue. %NASLMINLEVEL 70300 C Tenable Network Security, In...

Format string

Format string vulnerability in the helptagsone function in src/excmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command...

CVE-2007-2953

Format string vulnerability in the helptagsone function in src/excmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command...

Microsoft Windows Help File Unspecified Heap Overflow Vulnerability

Description The Microsoft Windows Help File viewer is reported prone to a heap-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data into insufficiently sized memory buffers. This vulnerability presents itself when the application handles a specially...

DEBIAN-CVE-2006-5295

Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service scanning service crash via a crafted Compressed HTML Help CHM file that causes ClamAV to "read an invalid memory location."...

CVE-2006-4138

Multiple unspecified vulnerabilities in Microsoft Windows Help File viewer winhlp32.exe allow user-assisted attackers to execute arbitrary code via crafted HLP files...

CVE-2006-4138

Multiple unspecified vulnerabilities in Microsoft Windows Help File viewer winhlp32.exe allow user-assisted attackers to execute arbitrary code via crafted HLP files...

CVE-2006-4138

CVE-2006-4138 affects the Microsoft Windows Help File viewer (winhlp32.exe). It involves multiple unspecified vulnerabilities that could allow user-assisted attackers to execute arbitrary code via crafted HLP files. The NVD entry lists a high impact with a base CVSS v2 score of 7.6 (AV:N/AC:H/Au:...

Microsoft Windows XP/2000/2003 help - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/19490/info The Microsoft Windows Help File viewer winhlp32.exe is prone to multiple remote vulnerabilities. These vulnerabilities present themselves when the application handles specially crafted Windows Help .hlp files. A successful attack may let the...

Microsoft Windows XP20002003 help - Multiple Vulnerabilities

Microsoft Windows XP20002003 help - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/19490/info The Microsoft Windows Help File viewer winhlp32.exe is prone to multiple remote vulnerabilities. These vulnerabilities present themselves when the application handles specially crafte...

Directory traversal

Directory traversal vulnerability in help/index.php in X7 Chat 2.0 and earlier allows remote attackers to include arbitrary files via .. dot dot sequences in the helpfile parameter...

[Full-Disclosure] Remote code execution with parameters without user interaction, even with XP SP2

PoC called CMDExe: http://www.freewebs.com/shreddersub7/htm.htm Discussion: http://www.freewebs.com/shreddersub7/expl-discuss.htm ------------------Which systems are vulnerable?-------- Any system running any Microsoft Windows XP edition with Internet Explorer 6 or higher, even with SP2 applied...

Microsoft Windows XP20002003 - winhlp32 Phrase Heap Overflow

Microsoft Windows XP20002003 - winhlp32 Phrase Heap Overflow source: https://www.securityfocus.com/bid/12092/info Microsoft Windows is prone to a heap-based buffer overflow vulnerability. This issue exists in 'winhlp32.exe' and is exposed when a malformed phrase compressed Windows Help file .hlp ...