|
|
|||
| Rule General Information |
|---|
| Release Date: | 2015-07-27 | |
| Rule Name: | Microsoft Windows Itss.dll CHM File Handling Heap Overflow Vulnerability -2 (CVE-2006-2297) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Heap-based buffer overflow in Microsoft Infotech Storage System Library (itss.dll) allows user-assisted attackers to execute arbitrary code via a crafted CHM/ITS file that triggers the overflow while decompiling. | |
| Impact: | A heap overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks include arbitrary code execution and denial of service. | |
| Affected OS: | Windows | |
| Reference: | SecurityFocusBID:17926 |
|
| Solutions |
|---|
| No information about possible solutions is published. Please use an alternative product to substitude the affected software. |