CVE-2007-0427

Currently unrated

Key Information:

Vendor: Microsoft
Status: Html Help Workshop
Vendor: CVE Published:; 23 January 2007

Summary

Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a help project (.HPJ) file with a long HLP field in the OPTIONS section.

References

http://www.securityfocus.com/bid/22135

vdb-entryx_refsource_BID

http://securityreason.com/securityalert/2177

third-party-advisoryx_refsource_SREASON

http://osvdb.org/31899

vdb-entryx_refsource_OSVDB

EPSS Score

87% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 23, 2007
Vulnerability Reserved
Jan 22, 2007

Collectors

NVD DatabaseMitre Database