Description
Buffer overflow in the HTML Help ActiveX Control (hhctrl.ocx) in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute code via (1) a long parameter to the Alink function, or (2) script containing a long argument to the showHelp function.
Exploits (1)
References (7)
Scores
EPSS
0.6130
EPSS Percentile
98.3%
Details
Status
published
Products (7)
microsoft/windows_2000
(4 CPE variants)
microsoft/windows_2000_terminal_services
(4 CPE variants)
microsoft/windows_98
microsoft/windows_98se
microsoft/windows_me
microsoft/windows_nt
4.0 (32 CPE variants)
microsoft/windows_xp
(3 CPE variants)
Published
Oct 10, 2002
Tracked Since
Feb 18, 2026