Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:56:46 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2013244596&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiledesc%2Fnotepadpoc.zip.html%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2013244596.1338181006.1338181006.1338181006.1%3B%2B__utmz%3D32867617.1338181006.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/87151/notepadpoc.zip http://packetstormsecurity.org/files/87151/notepadpoc.zip http://packetstormsecurity.org/files/87151/First-Remote-Code-Execution-Vulnerablity-Affecting-Microsoft-Notepad.html Wed, 10 Mar 2010 15:51:10 GMT The MS HTML Help control activex is prone to a remote CHM help file hijack vulnerability when applications invoke help. Multiple built-in applications are vulnerable to this. The impact of the vulnerability is the loading of the incorrect CHM help file when it resides in the same directory the application invoking help starts in. This proof of concept exploit leverages Notepad to demonstrate the vulnerability.