Intrusion Prevention

MS.Windows.HTML.Help.File.Processing.Code.Execution

Description

This indicates an attack attempt against a code execution vulnerability in Microsoft Windows.
The vulnerability is caused by an error when the vulnerable software is parsing a malicious HTML Help File. It may allow remote attackers to execute arbitrary code by tricking a user to open a crafted ".chm" file.

Affected Products

Windows XP SP3 fully patched
Windows 2000 SP4

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are not aware of any vendor supplied patch for this issue.