Microsoft » Hyperlink Object Library : Security Vulnerabilities, CVEs, CVSS score >= 3
Unspecified vulnerability in Microsoft Hyperlink Object Library (hlink.dll), possibly a buffer overflow, allows user-assisted attackers to execute arbitrary code via crafted hyperlinks that are not properly handled when hlink.dll "uses a file containing a malformed function," aka "Hyperlink Object Function Vulnerability."
Max CVSS
9.3
EPSS Score
2.74%
Published
2006-08-09
Updated
2018-10-12
Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka "Hyperlink COM Object Buffer Overflow Vulnerability." NOTE: this is a different issue than CVE-2006-3059.
Max CVSS
9.3
EPSS Score
41.46%
Published
2006-06-19
Updated
2018-10-18
2 vulnerabilities found