Fortinet Discovers Microsoft Windows HTML Help Remote Code Execution Vulnerability
Fortinet's FortiGuard Labs has discovered a remote code execution vulnerability in Microsoft Windows.
Microsoft Compiled HTML Help is a Microsoft proprietary online help format, consisting of a collection of HTML pages, an index and other navigation tools. The files are compressed and deployed in a binary format with the extension .CHM, for Compiled HTML. The format is often used for software documentation.
A remote code execution vulnerability exists in the way that Windows handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code with elevated permissions on a target system. To exploit the vulnerability, an attacker could create a specially crafted 'chm' document, causing Windows to execute arbitrary code with elevated permissions.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Feb 28, 2018
So far Microsoft has not provided any solution for it.
Fortinet reported the vulnerability to Microsoft on Jan 23, 2018.
Microsoft confirmed the vulnerability on Feb 6, 2018.
Microsoft released the advisory for the vulnerability on May 8, 2018.
This vulnerability was discovered by Kushal Arvind Shah of Fortinet's FortiGuard Labs.