|
Microsoft Help Workshop .CNT File Buffer Overflow Vulnerability
Microsoft Help Workshop fails to properly bounds-check user-supplied input in '.cnt' files. A malformed '.cnt' file containing an unusually long string may be used to cause a stack-based buffer-overflow, allowing the execution of arbitrary code. A successful exploit would result in the execution of arbitrary code within the security context of the user running the eaffected application. |
|
|
Privacy Statement |
