Microsoft Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability

Microsoft Windows HTML Help HHCtrl ActiveX Control Memory Corruption Vulnerability

Microsoft Windows HTML Help is prone to a memory-corruption vulnerability. This is related to the handling of the HHCtrl ActiveX control.

Attackers may exploit this issue via a malicious web page to execute arbitrary code in the context of the currently logged-in user. Exploitation attempts may lead to a denial-of-service condition as well. Attackers may also employ HTML email to carry out an attack.