cpe:/a:microsoft:infotech_storage_system_library CVE-2006-2297 2006-05-09T22:22:00.000-04:00 2017-07-19T21:31:20.897-04:00 4.0 NETWORK HIGH NONE PARTIAL PARTIAL NONE http://nvd.nist.gov 2006-05-10T22:56:00.000-04:00 BID 17926 BUGTRAQ 20060509 [Reversemode] Microsoft Infotech Storage library Heap Corruption BUGTRAQ 20060510 Re: [Reversemode] Microsoft Infotech Storage library Heap Corruption BUGTRAQ 20060512 Re: [Reversemode] Microsoft Infotech Storage library Heap Corruption SECUNIA 20061 OSVDB 25501 SREASON 886 VUPEN ADV-2006-1761 MISC http://www.reversemode.com/advisories/advisory-itss.pdf XF ms-itssdll-chm-bo(26340) Heap-based buffer overflow in Microsoft Infotech Storage System Library (itss.dll) allows user-assisted attackers to execute arbitrary code via a crafted CHM / ITS file that triggers the overflow while decompiling.