CVE-2006-0564

CVE Database · CVE-2006-0564

CVE-2006-0564

· N/AModified

CVSS v3.1

N/A

EPSS

71.46%

Published

Feb 6, 2006

Modified

Apr 15, 2026

Public PoC / Exploit (8)

All weaponized →

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included in the Microsoft HTML Help 1.4 SDK, allows context-dependent attackers to execute arbitrary code via a .hhp file with a long Contents file field.

Affected Products (2)

microsoft · html_helpvulnerable

microsoft · html_help_workshopvulnerable

References (14)

http://secunia.com/advisories/18740

Vendor Advisory

http://securitytracker.com/id?1015585

http://users.pandora.be/bratax/advisories/b008.html

http://www.kb.cert.org/vuls/id/124460

US Government Resource

http://www.osvdb.org/22941

http://www.vupen.com/english/advisories/2006/0446

https://exchange.xforce.ibmcloud.com/vulnerabilities/24481

http://secunia.com/advisories/18740

Vendor Advisory

http://securitytracker.com/id?1015585

http://users.pandora.be/bratax/advisories/b008.html

KEV Catalog EPSS Scores Vendors All CVEs