[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248585

 
 

909

 
 

195621

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-0352Date: (C)2007-01-18   (M)2023-12-22


Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a crafted .cnt file composed of lines that begin with an integer followed by a space and a long string.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1017530
http://www.securityfocus.com/archive/1/457210/100/0/threaded
SREASON-2156
BID-22100
SECUNIA-23862
EXPLOIT-DB-3149
OSVDB-31898
http://www.anspi.pl/~porkythepig/visualization/cnt-expl1.cpp
ms-help-workshop-cnt-bo(31555)

CPE    1
cpe:/a:microsoft:html_help_workshop:4.02.0002

© SecPod Technologies