CVE-2002-0693

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description A buffer overflow issue exists in the HTML Help ActiveX Control (hhctrl.ocx) that allows remote attackers to execute code. This can be achieved via a long parameter to the Alink function or script containing a long argument to the showHelp function.

Recommendations For Microsoft Windows versions prior to the fixed version, update to the latest version to resolve the issue. As a temporary workaround, consider disabling the Alink function and restricting the use of the showHelp function until a patch is available.