Microsoft HTML Workshop product - New unpatched vulnerability and POC exploit
This development tool is part of an SDK that can help
Client/Server or web developers in authoring help screens for applications.
This unpatched exploit is rated moderately critical and an exploit has been
Microsoft HTML Help Workshop "hhp" File Handling
Buffer Overflow Issue
Rated as : Moderate Risk
Remotely Exploitable :
Locally Exploitable : Yes
Release Date : 2006-02-06
Exploits: POC exploit published at FrSIRT's
Affected Products: Microsoft HTML Help Workshop version
4.74.8702.0 and prior
Solution: Do not open untrusted
".hhp" files, as an there are no officially supplied patch for
this issue yet.
Technical Description: A vulnerability has been identified
in Microsoft HTML Help Workshop, which could be exploited by attackers to execute arbitrary
commands. This flaw is due to a buffer overflow error when
processing a specially crafted ".hhp" file containing an overly long "Contents
file" field, which could be exploited by remote attakers to compromise a
vulnerable system by convincing a user to open a malicious ".hhp" file.