Integer underflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote malicious users to execute arbitrary code via a malformed .hlp file, which leads to a heap-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows 2000 |
||
microsoft windows 2003 server enterprise |
||
microsoft windows 2003 server enterprise_64-bit |
||
microsoft windows 2003 server r2 |
||
microsoft windows nt 4.0 |
||
microsoft windows xp |
||
microsoft windows 2003 server standard |
||
microsoft windows 2003 server web |