CVE-2006-1591

2006-04-0310:00:00

mitre

www.cve.org

AI Score

7.8

Confidence

High

EPSS

0.376

Percentile

97.2%

JSON

Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file.

References

lists.grok.org.uk/pipermail/full-disclosure/2006-March/044748.html

securityreason.com/securityalert/700

www.open-security.org/advisories/15

www.securityfocus.com/archive/1/430871/100/0/threaded

www.securityfocus.com/bid/17325

exchange.xforce.ibmcloud.com/vulnerabilities/25573