Intrusion Prevention



This indicates an attack attempt against a buffer-overflow vulnerability in the Microsoft Windows Help File viewer.
The vulnerability is caused by an error when the vulnerable software handles a malformed embedded image in a .hlp file. A remote attacker may exploit this to execute arbitrary code.

Affected Products

Microsoft Corporation: Windows 2000 Any version
Microsoft Corporation: Windows 2003 Any version
Microsoft Corporation: Windows NT 4.0
Microsoft Corporation: Windows XP Any version


System compromise.

Recommended Actions

Currently, we are not aware of any official fix for this issue. Please do not open any distrustful .hlp file.

CVE References