Hyperlink Object Library Could Allow Remote Code Execution

An unchecked buffer exists in the Hyperlink Object Library which could allow an intruder to construct a hyperlink that, when clicked by a user, could allow the intruder to take complete control of a user's system.

ITPro Today

February 8, 2005

1 Min Read
ITPro Today logo in a gray background | ITPro Today

ReportedFebruary 8, 2005 by Microsoft

VERSIONS AFFECTED


DESCRIPTION


An uncheckedbuffer exists in the Hyperlink Object Library which could allow anintruder to construct a hyperlink that, when clicked by a user, couldallow the intruder to take complete control of a user's system.

VENDOR RESPONSE

Microsoft has releasedSecurity Bulletin MS05-015, "Vulnerabilityin Hyperlink Object Library Could Allow Remote Code Execution(888113),"and an associated patch.

CREDIT

Anna Hollingzworth



Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like