 |
|
|
|
CHM files execution in Internet Explorer
updated since 19.05.2000 | | Published: |  | 03.01.2004 | | Source: |  | BUGTRAQ | | SecurityVulns ID: |  | 169 | | Type: |  | client | | Level: |  | 6/10 | | Description: |  | CHM file (HTML-help) may contain unsafe ActiveX elements and could lead to code execution. CHM execution may be triggered by calling CHM file as a HTML or via ActiveX elements. |
| Affected: |  | MICROSOFT : Internet Explorer 5.01 | | | | MICROSOFT : Internet Explorer 5.0 | | | | MICROSOFT : Internet Explorer 4.0 | | | | MICROSOFT : Internet Explorer 4.01 | | | | MICROSOFT : Internet Explorer 5.5 | | | | MICROSOFT : Internet Explorer 6.0 |
| Original document |  | Arman Nayyeri, IE 5.x-6.0 allows executing arbitrary programs using showHelp() (03.01.2004) |
| | | Thor Larholm, Thor Larholm security advisory TL#004 (10.10.2002) |
| | | Thor Larholm, Thor Larholm security advisory TL#004 (07.10.2002) |
| | | NGSSoftware Insight Security Research, Buffer Overflow in IE/Outlook HTML Help (03.10.2002) |
| | | MICROSOFT, Security Bulletin MS02-055: Unchecked Buffer in Windows Help Facility Could Enable Code Execution (Q323255) (03.10.2002) |
| | | http-equiv@excite.com, Self-Executing HTML: Internet Explorer 5.5 and 6.0 (03.06.2002) |
| | | Georgi Guninski, OBJECT TYPE="text/html" may allow executing arbitrary programs in IE 5.5 (24.11.2000) |
| | | Georgi Guninski, IE 5.x/Outlook allows executing arbitrary programs using .chm files and temporary internet files folder (21.11.2000) |
| | | CERT, Advisory CA-2000-12 (20.06.2000) |
| | | MICROSOFT, Security Bulletin (MS00-037) (03.06.2000) |
| | | http-equiv_(at)_excite.com, MICROSOFT SECURITY FLAW? (19.05.2000) |
| SwitchOff Multiple bugs | | Published: | | 03.01.2004 | | Source: | | WINTER-SMITH | | SecurityVulns ID: | | 3341 | | Type: | | remote | | Level: | | 5/10 | | Description: | | Infinite loop on oversized string to TCP/8000, stack overflow. |
| |
|
| |
