Vulnerability in N/a
CVE-2007-0352
Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a crafted .cnt file composed of lines that begin with an integer followed by a space and a long string.
EPSS: 0.675 (98.6th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 20070117 Microsoft Help Workshop .CNT contents files buffer overflow vulnerability (mailing-list, x_refsource_BUGTRAQ)
- ms-help-workshop-cnt-bo(31555) (vdb-entry, x_refsource_XF)
- 1017530 (vdb-entry, x_refsource_SECTRACK)
- 22100 (vdb-entry, x_refsource_BID)
- 2156 (x_refsource_SREASON, third-party-advisory)
- 3149 (exploit, x_refsource_EXPLOIT-DB)
- 23862 (x_refsource_SECUNIA, third-party-advisory)
- 31898 (x_refsource_OSVDB, vdb-entry)
- www.anspi.pl/~porkythepig/visualization/cnt-expl1.cpp (x_refsource_MISC)