Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2002-0823

Published: 12/08/2002 Updated: 07/11/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Windows Help

Vulnerability Summary

Buffer overflow in Winhlp32.exe allows remote malicious users to execute arbitrary code via an HTML document that calls the HTML Help ActiveX control (HHCtrl.ocx) with a long pathname in the Item parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows help

microsoft windows 2000

Exploits

Exploit DB: Microsoft Windows 95/98/2000/NT 4.0 - WinHlp Item Buffer Overflow
source: wwwsecurityfocuscom/bid/4857/info HTML Help ActiveX control (Hhctrlocx) ships as part of Microsoft HTML Help and is designed to work with Internet Explorer to provide functionality for help systems A remotely exploitable issue has been reported in the WinHlp facility The software fails to perform sufficient boundary checks of ...

References

NVD-CWE-Otherhttp://www.iss.net/security_center/static/9746.phphttp://www.securityfocus.com/bid/4857http://www.osvdb.org/2991http://marc.info/?l=bugtraq&m=102822806329440&w=2http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3Bq293338https://nvd.nist.govhttps://www.exploit-db.com/exploits/21485/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook