Hyperlink Object Library

CVEs (2)

• CVE-2006-3086Jun 19, 2006
  Microsoft

  Hyperlink Object Library
  risk 0.08cvss —epss 0.60

  Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library (hlink.dll) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long link in Unicode, aka "Hyperlink COM Object Buffer Overflow Vulnerability." NOTE: this is a different issue than CVE-2006-3059.

• CVE-2006-3438Aug 9, 2006
  Microsoft

  Hyperlink Object Library
  risk 0.04cvss —epss 0.51

  Unspecified vulnerability in Microsoft Hyperlink Object Library (hlink.dll), possibly a buffer overflow, allows user-assisted attackers to execute arbitrary code via crafted hyperlinks that are not properly handled when hlink.dll "uses a file containing a malformed function," aka "Hyperlink Object Function Vulnerability."