CVE-2006-1591
Heap-based buffer overflow in Microsoft Windows Help winhlp32.exe allows user-assisted attackers to execute arbitrary code via crafted embedded image data in a .hlp file.
| Software | From | Fixed in |
|---|---|---|
| microsoft / windows_nt | 4.0-sp5 | 4.0-sp5.x |
| microsoft / windows_xp | - | - |
| microsoft / windows_2003_server | web | web.x |
| microsoft / windows_2003_server | enterprise | enterprise.x |
| microsoft / windows_nt | 4.0-sp6a | 4.0-sp6a.x |
| microsoft / windows_2000 | - | - |
| microsoft / windows_nt | 4.0-sp6 | 4.0-sp6.x |
| microsoft / windows_nt | 4.0 | 4.0.x |
| microsoft / windows_nt | 4.0-sp1 | 4.0-sp1.x |
| microsoft / windows_nt | 4.0-sp3 | 4.0-sp3.x |
| microsoft / windows_nt | 4.0-sp4 | 4.0-sp4.x |
| microsoft / windows_2003_server | r2-sp1 | r2-sp1.x |
| microsoft / windows_nt | 4.0-sp2 | 4.0-sp2.x |
| microsoft / windows_2003_server | web-sp1 | web-sp1.x |
| microsoft / windows_2003_server | standard-sp1 | standard-sp1.x |
| microsoft / windows_2003_server | enterprise-sp1 | enterprise-sp1.x |
| microsoft / windows_2003_server | standard | standard.x |
| microsoft / windows_2003_server | r2 | r2.x |
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044748.html
- http://securityreason.com/securityalert/700
- http://www.open-security.org/advisories/15
- http://www.securityfocus.com/archive/1/430871/100/0/threaded
- http://www.securityfocus.com/bid/17325
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25573
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime