← CVECheck
HomeVulnerabilities

CVE-2002-0823 — HIGH severity vulnerability (Buffer overflow in Winhlp32.exe allows remote attackers to e)

Buffer overflow in Winhlp32.exe allows remote attackers to execute arbitrary code via an HTML document that calls the HTML Help ActiveX control (HHCtrl.ocx) with a long pathname in the Item parameter.

CVE IDCVE-2002-0823
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-08-12
Last modified2026-04-16
DescriptionBuffer overflow in Winhlp32.exe allows remote attackers to execute arbitrary code via an HTML document that calls the HTML Help ActiveX control (HHCtrl.ocx) with a long pathname in the Item parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →