HTTP: Microsoft HTML Help Workshop File With Binary
This signature detects a Microsoft HTML Help Workshop .HHP file containing binary data sent through HTTP. These files should not contain binary, as it can indicate the presence of shellcode or other corruption.
Extended Description
Microsoft HTML Help Workshop is prone to a remote buffer-overflow vulnerability. The vulnerability occurs when the application handles a malformed HTML Help Workshop Project ('.hhp') file. An attacker may exploit the issue to execute arbitrary code in the context of the application. This vulnerability affects HTML Help Workshop 4.74 and prior versions.
Affected Products
Microsoft html_help_workshop
Short Name
HTTP:STC:HHP-BINARY
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Binary CVE-2006-0564 CVE-2009-0133 File HTML Help Microsoft With Workshop bid:33189
Release Date
02/21/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5
10.0