Vulnerabilities > CVE-2004-1306 - Heap Overflow vulnerability in Microsoft Windows winhlp32 Phrase
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a crafted .hlp file.
Vulnerable Configurations
Exploit-Db
description | Microsoft Windows 2000/2003/XP winhlp32 Phrase Integer Overflow Vulnerability. CVE-2004-1306 . Remote exploit for windows platform |
id | EDB-ID:25049 |
last seen | 2016-02-03 |
modified | 2004-12-23 |
published | 2004-12-23 |
reporter | flashsky fangxing |
source | https://www.exploit-db.com/download/25049/ |
title | Microsoft Windows 2000/2003/XP winhlp32 Phrase Integer Overflow Vulnerability |