Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Prion
Prionadded 2010/06/15 2:4 p.m.26 views

Input validation

The MPC::HexToNum function in helpctr.exe in Microsoft Windows Help and Support Center in Windows XP and Windows Server 2003 does not properly handle malformed escape sequences, which allows remote attackers to bypass the trusted documents whitelist fromHCP option and execute arbitrary commands v...

9.3CVSS7.5AI score0.92199EPSS
Exploits11References16Affected Software1
Saint
Saintadded 2010/06/15 12:0 a.m.36 views

Windows Help and Support Center -FromHCP URL whitelist bypass

Added: 06/15/2010 CVE: CVE-2010-1885 BID: 40725 OSVDB: 65264 Background The Microsoft Windows Help and Support Center is a resource in Microsoft Windows operating systems for online help, support, tools, how-to articles, and other resources. Problem A vulnerability in Windows Help and Support...

9.3CVSS6.5AI score0.92199EPSS
Exploits11
Cvelist
Cvelistadded 2010/06/14 6:0 p.m.25 views

CVE-2010-1885

The MPC::HexToNum function in helpctr.exe in Microsoft Windows Help and Support Center in Windows XP and Windows Server 2003 does not properly handle malformed escape sequences, which allows remote attackers to bypass the trusted documents whitelist fromHCP option and execute arbitrary commands v...

7.1AI score0.92199EPSS
Exploits11References16
securityvulns
securityvulnsadded 2010/06/14 12:0 a.m.39 views

Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly

Microsoft Windows Help Centre Handles Malformed Escape Sequences Incorrectly ---------------------------------------------------------------------------- Help and Support Centre is the default application provided to access online documentation for Microsoft Windows. Microsoft supports accessing...

6.2AI score
Exploits0
CERT
CERTadded 2010/06/10 12:0 a.m.15 views

Microsoft Windows Help and Support Center URI processing vulnerability

Overview The Microsoft Windows Help and Support Center application fails to properly sanitize hcp:// URIs, which can allow a remote, unauthenticated attacker to execute arbitrary commands. Description Microsoft Windows Help and Support Center is the default handler for the hcp protocol on Windows...

7AI score
Exploits0References9
Prion
Prionadded 2006/04/03 10:4 a.m.19 views

Heap overflow

Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file...

5.1CVSS8.4AI score0.15429EPSS
Exploits1References6Affected Software2
NVD
NVDadded 2006/04/03 10:4 a.m.16 views

CVE-2006-1591

Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file...

5.1CVSS7.8AI score0.15429EPSS
Exploits1References6
Cvelist
Cvelistadded 2006/04/03 10:0 a.m.19 views

CVE-2006-1591

Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file...

7.8AI score0.15429EPSS
Exploits1References6
Rows per page
Query Builder