TUCoPS :: Windows :: win4869.htm

helpctr.exe exploitable buffer overflow
22th Nov 2001 [SBWID-4869]
COMMAND

	helpctr.exe

SYSTEMS AFFECTED

	Windows XP Pro

PROBLEM

	Meliksah Ozoral found an exploitable buffer  overflow  vulnerability  in
	\"helpctr.exe\", which can enable an attacker to  execute  an  arbitrary
	code on remote users with a malformed url.
	

	Example :
	

	\"hcp://m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m.m\"

	

	Note : Dots are important do not remove them.
	

	

SOLUTION

	Noting yet.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2025 AOH