CVE-2004-0474 in Windows信息

摘要

由 VulDB • 2026-06-15

帮助中心 (HelpCtr.exe) 可能允许远程攻击者通过 `hcp://` URL 中主题参数中的 “http://” 或 “file://” 自变量读取或执行任意文件。注意:自从最初报告此问题以来,几位研究人员均未能重现该漏洞。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!