CVE-2007-0427

CVE Database · CVE-2007-0427

CVE-2007-0427

· N/AModified

CVSS v3.1

N/A

EPSS

30.96%

Published

Jan 22, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (3)

All weaponized →

Exploit-DBMicrosoft Help Workshop 4.03.0002 - '.cnt' Local Buffer Overflow Exploit-DBMicrosoft Help Workshop 4.03.0002 - '.HPJ' Local Buffer Overflow TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Stack-based buffer overflow in Microsoft Help Workshop 4.03.0002 allows user-assisted remote attackers to execute arbitrary code via a help project (.HPJ) file with a long HLP field in the OPTIONS section.

Affected Products (1)

microsoft · html_help_workshopvulnerable

References (12)

http://osvdb.org/31899

http://secunia.com/advisories/23862

http://securityreason.com/securityalert/2177

http://www.anspi.pl/~porkythepig/visualization/hpj-x01.cpp

Exploit

http://www.securityfocus.com/archive/1/457436/100/0/threaded

http://www.securityfocus.com/bid/22135

Exploit

http://osvdb.org/31899

http://secunia.com/advisories/23862

http://securityreason.com/securityalert/2177

http://www.anspi.pl/~porkythepig/visualization/hpj-x01.cpp

Exploit

http://www.securityfocus.com/archive/1/457436/100/0/threaded

KEV Catalog EPSS Scores Vendors All CVEs