virus logo Intrusion Prevention

MS.Windows.HTML.Help.File.Processing.Code.Execution

description-logoDescription

This indicates an attack attempt against a code execution vulnerability in Microsoft Windows.
The vulnerability is caused by an error when the vulnerable software is parsing a malicious HTML Help File. It may allow remote attackers to execute arbitrary code by tricking a user to open a crafted ".chm" file.

affected-products-logoAffected Products

Windows XP SP3 fully patched
Windows 2000 SP4

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://secunia.com/advisories/38916/
ID 18289
Created Mar 30, 2010
Updated Jan 13, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows
Affected App Other