HolidayBuyer's Guide

Internet Explorer HTML Help ActiveX Control Memory Corruption

Specially crafted images could allow remote access to vulnerable PCs

This vulnerability is caused by an error in the HTML Help ActiveX control (hhctrl.ocx). When handling the "Image" property within an HTML file, the vulnerability can be exploited by using a long string to cause memory corruption (buffer overflow). Successful exploit could lead to the execution of remote code on a compromised PC.

Additional Resources:

Close
Drag