Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long align argument in an HR tag.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Windows_2000 | Microsoft | * | * |
Windows_2003_server | Microsoft | 64-bit (including) | 64-bit (including) |
Windows_2003_server | Microsoft | r2 (including) | r2 (including) |
Windows_98 | Microsoft | * | * |
Windows_98se | Microsoft | * | * |
Windows_me | Microsoft | * | * |
Windows_nt | Microsoft | 4.0 (including) | 4.0 (including) |
Windows_xp | Microsoft | * | * |