Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a help project (.HPJ) file with a long HLP field in the OPTIONS section.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Help Workshop畸形.HPJ文件远程栈溢出漏洞
Vulnerability Description
Microsoft Help Workshop是Microsoft Visual Studio中的一个标准组件,用于帮助创建HTML格式的HELP文件。 Help Workshop在处理带有畸形数据的HPJ文件时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞控制用户机器。Help Workshop在处理.HPJ文件中OPTIONS部分的HLP字段时对文件路径变量(HelpFilePathString01)数据缺少边界检查。如果字符串长度超过了256字节的话,就可能触发栈溢出,导致执行任意指令,远程攻击者可以
CVSS Information
N/A
Vulnerability Type
N/A