Vulnerabilities > Microsoft > Hyperlink Object Library > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-08-09 | CVE-2006-3438 | Remote Buffer Overflow vulnerability in Microsoft Hyperlink Object Library Function Unspecified vulnerability in Microsoft Hyperlink Object Library (hlink.dll), possibly a buffer overflow, allows user-assisted attackers to execute arbitrary code via crafted hyperlinks that are not properly handled when hlink.dll "uses a file containing a malformed function," aka "Hyperlink Object Function Vulnerability." | 9.3 |
2006-06-19 | CVE-2006-3086 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Hyperlink Object Library Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka "Hyperlink COM Object Buffer Overflow Vulnerability." NOTE: this is a different issue than CVE-2006-3059. | 9.3 |