CVE-2002-0693
Last modified
CVE-2002-0693 is a vulnerability of currently unknown severity. Buffer overflow in the HTML Help ActiveX Control (hhctrl.ocx) in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute code via (1) a long parameter to the Alink function, or (2) script containing a long argument to the showHelp function.. EPSS estimates a 52.42% chance of exploitation in the next 30 days.
Description
Buffer overflow in the HTML Help ActiveX Control (hhctrl.ocx) in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute code via (1) a long parameter to the Alink function, or (2) script containing a long argument to the showHelp function.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Windows 2000 | All versions | — |
| Microsoft | Windows 2000 Terminal Services | All versions | — |
| Microsoft | Windows 98 | All versions | Gold |
| Microsoft | Windows 98se | All versions | — |
| Microsoft | Windows Me | All versions | — |
| Microsoft | Windows Nt | 4.0 | — |
| Microsoft | Windows Xp | All versions | — |
References
- http://www.iss.net/security_center/static/10253.phpVendor Advisory
- http://www.iss.net/security_center/static/10253.phpVendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2002-0693?
How severe is CVE-2002-0693?
How do I fix CVE-2002-0693?
Are you affected by CVE-2002-0693?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST