CVE-2006-2297 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-2297
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-2297

Description: Heap-based buffer overflow in Microsoft Infotech Storage System Library (itss.dll) allows user-assisted attackers to execute arbitrary code via a crafted CHM / ITS file that triggers the overflow while decompiling.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26340 SREASON http://securityreason.com/securityalert/886 SAID Secunia Advisory: SA20061 OSVDB 25501 MISC http://www.reversemode.com/advisories/advisory-itss.pdf BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/433833/30/5040/threaded http://www.securityfocus.com/archive/1/archive/1/433854/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/433435/100/0/threaded BID 17926

Return to the previous page.