Vulnerabilities > CVE-2006-1591 - Unspecified vulnerability in Microsoft products

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

microsoft

NVD

Published: 2006-04-03

Updated: 2019-04-30

Summary

Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file.

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows NT 4.0 Microsoft Windows XP * Microsoft Windows 2003 Server Web Microsoft Windows 2003 Server Enterprise Microsoft Windows 2003 Server R2 Microsoft Windows 2003 Server Standard Microsoft Windows 2000 *	52

References

http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044748.html
http://www.open-security.org/advisories/15
http://www.securityfocus.com/bid/17325
http://securityreason.com/securityalert/700
https://exchange.xforce.ibmcloud.com/vulnerabilities/25573
http://www.securityfocus.com/archive/1/430871/100/0/threaded