12625 : Microsoft Windows winhlp32.exe Overflow
Printer | http://osvdb.org/12625 | Email This | Edit Vulnerability

Views This Week

Views All Time

Info

Last Modified

8 months ago

Percent Complete

100%

Disclosure

Dec 20, 2004

Discovery

Unknown

Dates

Exploit

Dec 20, 2004

Solution

Unknown

Description

A remote overflow exists in Microsoft Windows. The 'winhlp32.exe' application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted '.hlp' file, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Microsoft Corporation	Windows	XP SP2
		XP
		NT
		2003 Server
		2000 SP3
		2000 SP2
		XP SP1
		2000
		2000 SP4
		2000 SP1

References

Security Tracker: 1012682
Bugtraq ID: 12091
Related OSVDB ID: 12623 12624
Secunia Advisory ID: 13645
ISS X-Force ID: 18678
CVE ID: 2004-1306 (see also: NVD) 2004-1361 (see also: NVD)
Keyword: AD_LAB-04006
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-12/0392.html
Vendor URL: http://www.microsoft.com/
Other Advisory URL: http://www.xfocus.net/flashsky/icoExp/

Credit

Keji - yu_kejivenustech.com.cn - Venustech AD-Lab

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

References

Credit

Blogs

Comments