Vulnerabilities > CVE-2006-1591 - Heap Overflow vulnerability in Microsoft Windows Help Image Processing
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 52 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044748.html
- http://securityreason.com/securityalert/700
- http://www.open-security.org/advisories/15
- http://www.securityfocus.com/archive/1/430871/100/0/threaded
- http://www.securityfocus.com/bid/17325
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25573