Buffer overflow in Windows XP "helpctr.exe"

From: mozoralat_private
Date: Wed Nov 21 2001 - 06:32:14 PST

Next message: Linux Mandrake Security Team: "MDKSA-2001:088 - squid update"

Previous message: behrat_private: "Mac Netscape password fields"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I don't know if this has been reported before. I discovered an exploitable buffer overflow vulnerability in "helpctr.exe", which can enable an attacker to execute an arbitrary code on remote users with a malformed url.

Example :
"hcp://m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m"
Note : Dots are important do not remove them.

I'm using Windows XP Pro Build 2600

Meliksah Ozoral
mozoralat_private

Next message: Linux Mandrake Security Team: "MDKSA-2001:088 - squid update"
Previous message: behrat_private: "Mac Netscape password fields"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Nov 21 2001 - 18:27:22 PST