CVE-2004-1361 Information

Description

Integer underflow in winhlp32.exe in Windows NT Windows 2000 through SP4 Windows XP through SP2 and Windows 2003 allows remote attackers to execute arbitrary code via a malformed .hlp file which leads to a heap-based buffer overflow.

Reference

http://marc.info/?l=bugtraq&m=110383690219440&w=2 http://www.securityfocus.com/bid/12091 http://www.xfocus.net/flashsky/icoExp/ https://exchange.xforce.ibmcloud.com/vulnerabilities/18678