SecuritySpace - CVE-2002-0694

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2002-0694

Description: The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka "Code Execution via Compiled HTML Help File."

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2002-0694
Microsoft Security Bulletin: MS02-055
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403
XForce ISS Database: win-chm-code-execution(10254)
http://www.iss.net/security_center/static/10254.php

CVE ID:	CVE-2002-0694
Description:	The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka "Code Execution via Compiled HTML Help File."
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2002-0694 Microsoft Security Bulletin: MS02-055 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403 XForce ISS Database: win-chm-code-execution(10254) http://www.iss.net/security_center/static/10254.php