Vulnerabilities > CVE-2006-0564 - Unspecified vulnerability in Microsoft Html Help and Html Help Workshop
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included in the Microsoft HTML Help 1.4 SDK, allows context-dependent attackers to execute arbitrary code via a .hhp file with a long Contents file field.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
description HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit. CVE-2006-0564,CVE-2009-0133. Local exploit for windows platform id EDB-ID:10321 last seen 2016-02-01 modified 2009-12-05 published 2009-12-05 reporter Encrypt3d.M!nd source https://www.exploit-db.com/download/10321/ title HTML Help Workshop 4.74 - hhp Project File Buffer Overflow Exploit description HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit. CVE-2006-0564. Local exploit for windows platform id EDB-ID:16648 last seen 2016-02-02 modified 2010-09-25 published 2010-09-25 reporter metasploit source https://www.exploit-db.com/download/16648/ title HTML Help Workshop 4.74 hhp Project File Buffer Overflow Exploit description HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit. CVE-2006-0564. Local exploit for windows platform id EDB-ID:16683 last seen 2016-02-02 modified 2010-09-25 published 2010-09-25 reporter metasploit source https://www.exploit-db.com/download/16683/ title HTML Help Workshop 4.74 hhp Project File Buffer Overflow Exploit description Microsoft HTML Help Workshop (.hhp file) Buffer Overflow Exploit. CVE-2006-0564,CVE-2009-0133. Local exploit for windows platform id EDB-ID:1470 last seen 2016-01-31 modified 2006-02-06 published 2006-02-06 reporter bratax source https://www.exploit-db.com/download/1470/ title Microsoft HTML Help Workshop - .hhp Buffer Overflow Exploit description Microsoft HTML Help Workshop (.hhp file) Buffer Overflow Exploit (new). CVE-2006-0564,CVE-2009-0133. Local exploit for windows platform id EDB-ID:1490 last seen 2016-01-31 modified 2006-02-11 published 2006-02-11 reporter k3xji source https://www.exploit-db.com/download/1490/ title Microsoft HTML Help Workshop - .hhp Buffer Overflow Exploit 2 description Microsoft HTML Workshop <= 4.74 Universal Buffer Overflow Exploit. CVE-2006-0564,CVE-2009-0133. Local exploit for windows platform file exploits/windows/local/7727.pl id EDB-ID:7727 last seen 2016-02-01 modified 2009-01-12 platform windows port published 2009-01-12 reporter SkD source https://www.exploit-db.com/download/7727/ title Microsoft HTML Workshop <= 4.74 - Universal Buffer Overflow Exploit type local
Metasploit
description This module exploits a stack buffer overflow in HTML Help Workshop 4.74 By creating a specially crafted hhp file, an attacker may be able to execute arbitrary code. id MSF:EXPLOIT/WINDOWS/FILEFORMAT/HHW_HHP_COMPILEDFILE_BOF last seen 2020-06-13 modified 2020-01-15 published 2009-12-08 references https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0564 reporter Rapid7 source https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/fileformat/hhw_hhp_compiledfile_bof.rb title HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow description This module exploits a stack buffer overflow in HTML Help Workshop 4.74 by creating a specially crafted hhp file. id MSF:EXPLOIT/WINDOWS/FILEFORMAT/HHW_HHP_CONTENTFILE_BOF last seen 2020-06-13 modified 1976-01-01 published 1976-01-01 references https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0564 reporter Rapid7 source https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/fileformat/hhw_hhp_contentfile_bof.rb title HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow
Packetstorm
| data source | https://packetstormsecurity.com/files/download/84552/hhw_hhp_contentfile_bof.rb.txt |
| id | PACKETSTORM:84552 |
| last seen | 2016-12-05 |
| published | 2009-12-31 |
| reporter | bratax |
| source | https://packetstormsecurity.com/files/84552/HTML-Help-Workshop-4.74-hhp-Project-File-Buffer-Overflow-Exploit.html |
| title | HTML Help Workshop 4.74 (hhp Project File) Buffer Overflow Exploit |
References
- http://secunia.com/advisories/18740
- http://secunia.com/advisories/18740
- http://securitytracker.com/id?1015585
- http://securitytracker.com/id?1015585
- http://users.pandora.be/bratax/advisories/b008.html
- http://users.pandora.be/bratax/advisories/b008.html
- http://www.kb.cert.org/vuls/id/124460
- http://www.kb.cert.org/vuls/id/124460
- http://www.osvdb.org/22941
- http://www.osvdb.org/22941
- http://www.vupen.com/english/advisories/2006/0446
- http://www.vupen.com/english/advisories/2006/0446
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24481
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24481