Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Check Point Advisories
Check Point Advisoriesadded 2010/01/13 12:0 a.m.3 views

Microsoft Windows itss.dll CHM File Handling Heap Corruption (CVE-2006-2297)

Microsoft Windows operating systems contain numerous libraries that facilitate the processing of the many file formats that are recognized by standard Windows installations. One such file format is the Microsoft compiled help files, known as CHM. A vulnerability exists in the Microsoft Windows...

4CVSS6.9AI score0.54298EPSS
Exploits1
NVD
NVDadded 2006/05/10 2:22 a.m.7 views

CVE-2006-2297

Heap-based buffer overflow in Microsoft Infotech Storage System Library itss.dll allows user-assisted attackers to execute arbitrary code via a crafted CHM / ITS file that triggers the overflow while decompiling...

4CVSS7.7AI score0.54298EPSS
Exploits1References10
CVE
CVEadded 2006/05/10 1:0 a.m.41 views

CVE-2006-2297

The CVE-2006-2297 entry documents a heap-based buffer overflow in Microsoft Infotech Storage System Library (itss.dll) that can be triggered by a crafted CHM/ITS file during decompiling, enabling user-assisted arbitrary code execution. Connected advisories (e.g., CPAI-2006-195) describe the flaw ...

4CVSS7.7AI score0.54298EPSS
Exploits1References10Affected Software1
exploitpack
exploitpackadded 2006/05/09 12:0 a.m.16 views

Microsoft Infotech Storage Library - Heap Corruption

Microsoft Infotech Storage Library - Heap Corruption source: https://www.securityfocus.com/bid/17926/info Microsoft Windows is susceptible to a heap-corruption vulnerability while attempting to read specially crafted CHM or ITS files. This occurs in the 'ITSS.DLL' library. This vulnerability allo...

0.4AI score
Exploits0
Exploit DB
Exploit DBadded 2006/05/09 12:0 a.m.26 views

Microsoft Infotech Storage Library - Heap Corruption

source: https://www.securityfocus.com/bid/17926/info Microsoft Windows is susceptible to a heap-corruption vulnerability while attempting to read specially crafted CHM or ITS files. This occurs in the 'ITSS.DLL' library. This vulnerability allows remote attackers to execute arbitrary machine code...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2005/06/15 12:0 a.m.24 views

High Risk Vulnerability in HTML Help (ITSS Parser)

Peter Winter-Smith of NGSSoftware has discovered a high risk vulnerability in one of the dependencies of HTML Help, the InfoTech Storage System parser. This flaw can permit arbitrary code execution through a number of applications including HTML Help, Internet Explorer and Outlook/Outlook Express...

0.3AI score
Exploits0
CERT
CERTadded 2005/06/14 12:0 a.m.25 views

Microsoft HTML Help vulnerable to integer overflow

Overview Microsoft HTML Help contains an integer overflow vulnerability, allowing a remote attacker to execute arbitrary code. Description HTML Help The Microsoft HTML Help system ". . . is the standard help system for the Windows platform." HTML Help components can be compiled to ". . . compress...

10CVSS6.8AI score0.44878EPSS
Exploits0References6
Cvelist
Cvelistadded 2004/04/06 4:0 a.m.21 views

CVE-2004-0380

The MHTML protocol handler in Microsoft Outlook Express 5.5 SP2 through Outlook Express 6 SP1 allows remote attackers to bypass domain restrictions and execute arbitrary code, as demonstrated on Internet Explorer using script in a compiled help CHM file that references the InfoTech Storage ITS...

7.1AI score0.74413EPSS
Exploits1References14
Rows per page
Query Builder