MS.Windows.HTML.Help.Heap.Overflow
Description
It indicates a possible exploit of Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows that may allows remote attackers to execute arbitrary commands via a .CHM file with a large length field
Affected Products
Microsoft Windows XP SP1, Microsoft Windows NT Workstation 4.0 SP6a, Microsoft Windows NT Server 4.0 SP6a, NT Enterprise Server 4.0 SP6a, Windows 2000 Server SP4, Windows 2000 Professional SP4
and Internet Explorer 6.0 SP1 and all earlier service packs.
Impact
Compromise of the affected system.
Recommended Actions
Apply patch as given in the Microsoft bulletin MS04-023.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-12-11 | 16.978 |