Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a large size field that triggers a heap-based buffer overflow, as demonstrated using a "ms-its:" URL in Internet Explorer.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows 远程代码执行漏洞
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 Microsoft Windows HTML帮助中存在远程代码执行漏洞,攻击者可以通过恶意网页或HTML邮件利用这个漏洞,以当前登陆用户的权限执行任意代码。 起因是没有正确的验证用户输入,如果HTML帮助通过InfoTech协议(ms-its, its, mk:@msitstore)处理畸形数据的话,就会触发这个漏洞。 攻击者可以创建特制的CHM文件导致以下情况之一: (1) 1A40C0DD call dwor
CVSS Information
N/A
Vulnerability Type
N/A