Vulnerabilities (CVE)

Filtered by vendor Microsoft Subscribe
Filtered by product Hyperlink Object Library
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-3438 1 Microsoft 1 Hyperlink Object Library 2024-02-28 9.3 HIGH N/A
Unspecified vulnerability in Microsoft Hyperlink Object Library (hlink.dll), possibly a buffer overflow, allows user-assisted attackers to execute arbitrary code via crafted hyperlinks that are not properly handled when hlink.dll "uses a file containing a malformed function," aka "Hyperlink Object Function Vulnerability."
CVE-2006-3086 1 Microsoft 1 Hyperlink Object Library 2024-02-28 9.3 HIGH N/A
Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka "Hyperlink COM Object Buffer Overflow Vulnerability." NOTE: this is a different issue than CVE-2006-3059.