Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long align argument in an HR tag.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Windows_2003_server | Microsoft | 64-bit | 64-bit |
Windows_2000 | Microsoft | * | * |
Windows_xp | Microsoft | * | * |
Windows_nt | Microsoft | 4.0 | 4.0 |
Windows_98se | Microsoft | * | * |
Windows_nt | Microsoft | 4.0 | 4.0 |
Windows_2003_server | Microsoft | r2 | r2 |
Windows_me | Microsoft | * | * |
Windows_98 | Microsoft | * | * |
Windows_xp | Microsoft | * | * |