7.5

CVE-2006-0564

Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included in the Microsoft HTML Help 1.4 SDK, allows context-dependent attackers to execute arbitrary code via a .hhp file with a long Contents file field.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftHtml Help Version1.4 Editionsdk
MicrosoftHtml Help Workshop Version4.74.8702.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 71.46% 0.993
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/18740
Vendor Advisory
http://securitytracker.com/id?1015585
http://users.pandora.be/bratax/advisories/b008.html
http://www.kb.cert.org/vuls/id/124460
US Government Resource
http://www.osvdb.org/22941
http://www.vupen.com/english/advisories/2006/0446
https://exchange.xforce.ibmcloud.com/vulnerabilities/24481