Lucene search
K

169 matches found

securityvulns
securityvulns
added 2007/02/13 12:0 a.m.53 views

Microsoft Security Bulletin MS07-008 Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843)

Microsoft Security Bulletin MS07-008 Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution 928843 Published: February 13, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum...

9.3CVSS0.6AI score0.26374EPSS
Exploits0
Symantec
Symantec
added 2007/02/13 12:0 a.m.11 views

Microsoft HTML Help ActiveX Control Remote Code Execution Vulnerability

Description The Microsoft HTML Help ActiveX control is prone to a remote code-execution vulnerability. An attacker could exploit this issue to execute code in the context of the user visiting a malicious web page. Technologies Affected Avaya Agent Access Avaya Basic Call Management System Reporti...

7.5AI score
Exploits0References2Affected Software5
securityvulns
securityvulns
added 2007/02/13 12:0 a.m.43 views

Microsoft Windows HTML Help ActiveX code execution

It's possible to access unsafe functions from web page. Vulnerability can be used for hidden malware installation...

9.3CVSS2AI score0.26374EPSS
Exploits0References1
CERT
CERT
added 2007/02/13 12:0 a.m.39 views

Microsoft HTML Help ActiveX control fails to properly validate input

Overview The Microsoft HTML Help ActiveX control fails to properly validate input, which could allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description The HTML Help Control HHCtrl Object is a Windows ActiveX control that provides the ability to view...

9.3CVSS6.6AI score0.26374EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2007/02/13 12:0 a.m.23 views

MS07-008: Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843)

The remote host contains a version of the HTML Help ActiveX control that is vulnerable to a security flaw that could allow an attacker to execute arbitrary code on the remote host by constructing a malicious web page and entice a victim to visit this web page. Tenable Network Security, Inc...

9.3CVSS6.1AI score0.26374EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2006/10/16 11:0 p.m.28 views

CVE-2006-5295

Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service scanning service crash via a crafted Compressed HTML Help CHM file that causes ClamAV to "read an invalid memory location."...

5CVSS5.9AI score0.10471EPSS
Exploits0
securityvulns
securityvulns
added 2006/08/09 12:0 a.m.41 views

Internet Explorer HTML Help ActiveX buffer overflow

Buffer overflow on oversized 'Image' property. Vulnerability can be used for hidden trojan installation...

2.9AI score
Exploits0References2
securityvulns
securityvulns
added 2006/08/08 12:0 a.m.55 views

Microsoft Security Bulletin MS06-046 Vulnerability in HTML Help Could Allow Remote Code Execution (922616)

Microsoft Security Bulletin MS06-046 Vulnerability in HTML Help Could Allow Remote Code Execution 922616 Published: August 8, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critic...

7.5CVSS6.8AI score0.35274EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2006/08/08 12:0 a.m.20 views

MS06-046: Vulnerability in HTML Help Could Allow Remote Code Execution (922616)

The remote host contains a version of the HTML Help ActiveX control that could allow an attacker to execute arbitrary code on the remote host by constructing a malicious web page and entice a victim to visit this web page. C Tenable Network Security, Inc. include"compat.inc"; if description...

7.5CVSS6.2AI score0.35274EPSS
Exploits1References2
CERT
CERT
added 2006/07/07 12:0 a.m.29 views

Microsoft Internet Explorer vulnerable to heap overflow via the HTML Help Control "Image" property

Overview The HTML Help ActiveX control contains a heap overflow vulnerability. This may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description ActiveXActiveX is a technology that allows programmers to create reusable software components that can be...

7.5CVSS7AI score0.35274EPSS
Exploits1References5
NVD
NVD
added 2006/07/06 8:5 p.m.21 views

CVE-2006-3357

Heap-based buffer overflow in HTML Help ActiveX control hhctrl.ocx in Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code by repeatedly setting the Image field of an Internet.HHCtrl.1 object to certain values,...

7.5CVSS7.9AI score0.35274EPSS
Exploits1References14
Cvelist
Cvelist
added 2006/07/06 8:0 p.m.28 views

CVE-2006-3357

Heap-based buffer overflow in HTML Help ActiveX control hhctrl.ocx in Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code by repeatedly setting the Image field of an Internet.HHCtrl.1 object to certain values,...

7.9AI score0.35274EPSS
Exploits1References14
CVE
CVE
added 2006/07/06 8:0 p.m.47 views

CVE-2006-3357

CVE-2006-3357 describes a heap overflow in the HTML Help ActiveX control (hhctrl.ocx) used by Internet Explorer 6. The vulnerability occurs when repeatedly setting the Image property of Internet.HHCtrl.1, which can lead to remote code execution or an application crash. Public advisories attribute...

7.5CVSS7.8AI score0.35274EPSS
Exploits1References14Affected Software1
securityvulns
securityvulns
added 2006/07/04 12:0 a.m.55 views

MoBB #2: Internet.HHCtrl Image Property

The following bug was tested on the latest version of Internet Explorer 6 on a fully-patched Windows XP SP2 system. This bug is interesting because a small heap overflow occurs each time this property is set. The bug is difficult to detect unless heap verification has been enabled in the global...

0.6AI score
Exploits0
0day.today
0day.today
added 2006/02/14 12:0 a.m.22 views

Microsoft HTML Help Workshop (.hhp file) Buffer Overflow Exploit (3)

Exploit for unknown platform in category local exploits ==================================================================== Microsoft HTML Help Workshop .hhp file Buffer Overflow Exploit 3 ==================================================================== / \ Windows HTML Help Workshop Index...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2006/02/14 12:0 a.m.35 views

Eagle Werros

/ Unl0ck Research Team Security Advisory / product: HTML Help Workshop 1994-1999 bug : stack overflow / vendor : Microsoft Corp. http://microsoft.com date : 13.02.06 / author : darkeagle / Info: stack based buffer overflows were founded in HTML HW. / HTML HW crashes when user opens specially...

Exploits0
securityvulns
securityvulns
added 2006/02/14 12:0 a.m.71 views

Microsoft HTML Help Workshop buffer overflow

Buffer overflow on .hhp files parsing...

2.4AI score
Exploits0References3Affected Software1
CERT
CERT
added 2006/02/13 12:0 a.m.37 views

Microsoft HTML Help Workshop buffer overflow

Overview A buffer overflow in Microsoft HTML Help Workshop may allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft HTML Help provides a standard help system for the Windows operating system. HTML Help Workshop is a component of the software development...

7.5CVSS7.1AI score0.71457EPSS
Exploits5References5
Exploit DB
Exploit DB
added 2006/02/11 12:0 a.m.54 views

Microsoft HTML Help Workshop - '.hhp' Local Buffer Overflow (2)

/ Microsoft HTML Help Workshop .hhp file Compiled File Header Buffer Overflow Exploit The Buffer Overlfow in Compiled File in Options in a HHP file. Bug found by:darkeagle Exploit coded by:k3xji Mail:[email protected] Web: www.guvenliklab.com Tested:Win XP SP2 / include include include define BUFL...

7AI score
Exploits0
seebug.org
seebug.org
added 2006/02/11 12:0 a.m.15 views

Microsoft HTML Help Workshop (.hhp file) Buffer Overflow Exploit (new)

No description provided by source. / Microsoft HTML Help Workshop .hhp file Compiled File Header Buffer Overflow Exploit The Buffer Overlfow in Compiled File in Options in a HHP file. Bug found by:darkeagle Exploit coded by:k3xji Mail:[email protected] Web: www.guvenliklab.com Tested:Win XP SP2 /...

7.1AI score
Exploits0
Rows per page
Query Builder