Multiple Remote Vulnerabilities in Microsoft Windows Help File Viewer

vendor:

Windows Help File Viewer

by:

SecurityFocus

7.5

CVSS

HIGH

Multiple Remote Vulnerabilities

N/A

CWE

Product Name: Windows Help File Viewer

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2006

Multiple Remote Vulnerabilities in Microsoft Windows Help File Viewer

The Microsoft Windows Help File viewer (winhlp32.exe) is prone to multiple remote vulnerabilities. These vulnerabilities present themselves when the application handles specially crafted Windows Help (.hlp) files. A successful attack may let the attacker crash the application or execute arbitrary code in the context of a vulnerable user who opens a malicious file.

Mitigation:

Since help files can inherently execute arbitrary malicious code, this BID is being retired.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/19490/info

The Microsoft Windows Help File viewer (winhlp32.exe) is prone to multiple remote vulnerabilities.

These vulnerabilities present themselves when the application handles specially crafted Windows Help (.hlp) files.

A successful attack may let the attacker crash the application or execute arbitrary code in the context of a vulnerable user who opens a malicious file.

Specific information regarding affected versions of Microsoft Windows is currently unavailable.

Update: Since help files can inherently execute arbitrary malicious code, this BID is being retired.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/28381.zip