Published: 06/02/2006 Updated: 20/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 790

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included in the Microsoft HTML Help 1.4 SDK, allows context-dependent malicious users to execute arbitrary code via a .hhp file with a long Contents file field.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft html help 1.4
microsoft html help workshop 4.74.8702.0

## # $Id: hhw_hhp_contentfile_bofrb 10477 2010-09-25 11:59:02Z mc $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...

#!/usr/bin/perl # Microsoft HTML Workshop <= 474 Universal Buffer Overflow Exploit # ----------------------------------------------------------------- # Discovered/Exploit by SkD (skdrat@hotmailcom) # ----------------------------------------------------------------- # # This is a continuation of my new method, shellhunting ...

## # $Id: hhw_hhp_compiledfile_bofrb 10477 2010-09-25 11:59:02Z mc $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...

#exploitpy # # HTML Help Workshop 474 (hhp Project File) Buffer Overflow Exploit # By: Encrypt3dM!nd # m1nd3dwordpresscom/ # Based on: wwwmilw0rmcom/exploits/7727 #################################################################### # Well, I've tested SKD Exploit on Win 7 and didn't workI Think it's # Shellhunter compatibi ...

/* Microsoft HTML Help Workshop hhp file Compiled File Header Buffer Overflow Exploit The Buffer Overlfow in Compiled File in Options in a HHP file Bug found by:darkeagle Exploit coded by:k3xji Mail:sumerc@gmailcom Web: wwwguvenliklabcom Tested:Win XP SP2 */ #include <stdioh> #include <stdlibh> #include <stringh> #defin ...

[OPTIONS] Compatibility=11 or later Compiled file=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaUUUUr0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa Display c ...

/* Microsoft HTML Help Workshop hhp file Buffer Overflow Exploit by bratax (wwwbrataxbe/) -> greets to: all my miffm00f buddies, BuzzDee and everyone else I forgot who should be in here -> thx to: Curt Wilson @ SIUC (maybe you don't know why but this exploit wouldn't exist if we didn't have that conversation a long long time ago) n ...

/* \ Windows HTML Help Workshop Index File Stack Overflow Exploit / by Darkeagle \ / [eagleblacksecurityorg] \ / MS coders codes so secure code Keep coding }:> \ / Original Advisory: eagleblacksecurityorg/stuff/unl0ck/adv/55k700206txt \ / Exploit tested in WinXP SP2 RUS \ */ #include <stdioh> #include <string ...

NVD-CWE-Other http://users.pandora.be/bratax/advisories/b008.html http://secunia.com/advisories/18740 http://securitytracker.com/id?1015585 http://www.kb.cert.org/vuls/id/124460 http://www.osvdb.org/22941 http://www.vupen.com/english/advisories/2006/0446 https://exchange.xforce.ibmcloud.com/vulnerabilities/24481 https://nvd.nist.gov https://www.kb.cert.org/vuls/id/124460 https://www.exploit-db.com/exploits/16648/

Get Started

CVE-2006-0564

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect