Re: Microsoft Windows "itss.dll" Heap Corruption Vulnerability

[Blue Boar <BlueBoar () thievco com>]

Fergie wrote:
> Successful exploitation requires that the user is e.g. tricked in opening or decompiling a malicious ".CHM" file using 
> "hh.exe".

Isn't opening a .chm already equivalent to running a .exe?

                                        BB
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.