CVE-2002-0694 - Vulnerability Details

Vendors	Products
Microsoft	Windows 2000 Windows 2000 Terminal Services Windows 98 Windows 98se Windows Me Windows Nt Windows Xp

Link	Providers
http://www.iss.net/security_center/static/10254.php
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-10-03T00:00:00", "descriptions": [{"lang": "en", "value": "The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka \"Code Execution via Compiled HTML Help File.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2006-11-01T00:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "MS02-055", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055"}, {"name": "oval:org.mitre.oval:def:403", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403"}, {"name": "win-chm-code-execution(10254)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/10254.php"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-0694", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka \"Code Execution via Compiled HTML Help File.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "MS02-055", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055"}, {"name": "oval:org.mitre.oval:def:403", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403"}, {"name": "win-chm-code-execution(10254)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/10254.php"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T02:56:38.711Z"}, "title": "CVE Program Container", "references": [{"name": "MS02-055", "tags": ["vendor-advisory", "x_refsource_MS", "x_transferred"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055"}, {"name": "oval:org.mitre.oval:def:403", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403"}, {"name": "win-chm-code-execution(10254)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/10254.php"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-0694", "datePublished": "2004-09-01T04:00:00", "dateReserved": "2002-07-12T00:00:00", "dateUpdated": "2024-08-08T02:56:38.711Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2002-10-03T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka "Code Execution via Compiled HTML Help File." (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2006-11-01T00:00:00 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : MS02-055 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_MS (string)

]

url : https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055 (string)

}

1 : { »

name : oval:org.mitre.oval:def:403 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403 (string)

}

2 : { »

name : win-chm-code-execution(10254) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : http://www.iss.net/security_center/static/10254.php (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2002-0694 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka "Code Execution via Compiled HTML Help File." (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : MS02-055 (string)

refsource : MS (string)

url : https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055 (string)

}

1 : { »

name : oval:org.mitre.oval:def:403 (string)

refsource : OVAL (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403 (string)

}

2 : { »

name : win-chm-code-execution(10254) (string)

refsource : XF (string)

url : http://www.iss.net/security_center/static/10254.php (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-08T02:56:38.711Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : MS02-055 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_MS (string)

2 : x_transferred (string)

]

url : https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055 (string)

}

1 : { »

name : oval:org.mitre.oval:def:403 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

3 : x_transferred (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403 (string)

}

2 : { »

name : win-chm-code-execution(10254) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : http://www.iss.net/security_center/static/10254.php (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2002-0694 (string)

datePublished : 2004-09-01T04:00:00 (string)

dateReserved : 2002-07-12T00:00:00 (string)

dateUpdated : 2024-08-08T02:56:38.711Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*", "matchCriteriaId": "4E545C63-FE9C-4CA1-AF0F-D999D84D2AFD", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*", "matchCriteriaId": "294EBA01-147B-4DA0-937E-ACBB655EDE53", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "4E8B7346-F2AA-434C-A048-7463EC1BB117", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*", "matchCriteriaId": "BE1A6107-DE00-4A1C-87FC-9E4015165B5B", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000_terminal_services:*:*:*:*:*:*:*:*", "matchCriteriaId": "9D34EFE5-22B7-4E8D-B5B2-2423C37CFFA7", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp1:*:*:*:*:*:*", "matchCriteriaId": "8208AFC9-0EFC-4A90-AD5A-FD94F5542885", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "4D4168AE-D19E-482E-8F2B-3E798B2D84E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp3:*:*:*:*:*:*", "matchCriteriaId": "B5E149E7-B748-44F6-BB55-68D5BF87AF41", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:*", "matchCriteriaId": "2D3B703C-79B2-4FA2-9E12-713AB977A880", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_98se:*:*:*:*:*:*:*:*", "matchCriteriaId": "AA733AD2-D948-46A0-A063-D29081A56F1F", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_me:*:*:*:*:*:*:*:*", "matchCriteriaId": "799DA395-C7F8-477C-8BC7-5B4B88FB7503", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:*:enterprise_server:*:*:*:*:*", "matchCriteriaId": "237D7C18-C8D6-4FDB-A160-FA17DD46A55A", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:*:server:*:*:*:*:*", "matchCriteriaId": "7C5FCE82-1E2F-49B9-B504-8C03F2BCF296", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server:*:*:*:*:*", "matchCriteriaId": "6E7E6AD3-5418-4FEA-84B5-833059CA880D", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:*:workstation:*:*:*:*:*", "matchCriteriaId": "35346A7B-2CB5-446D-B0C3-1F21D71A746D", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:*:*:*:*:*", "matchCriteriaId": "064F4E76-1B89-4FA5-97ED-64624285C014", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:*:*:*:*:*", "matchCriteriaId": "089A953C-8446-4E6F-B506-430C38DF37B1", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:*:*:*:*:*", "matchCriteriaId": "EA262C44-C0E6-493A-B8E5-4D26E4013226", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp1:workstation:*:*:*:*:*", "matchCriteriaId": "416F06DD-980E-4A54-822D-CBA499FD1F86", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:*:*:*:*:*", "matchCriteriaId": "F66DC6FF-2B3D-4718-838F-9E055E89961F", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:*:*:*:*:*", "matchCriteriaId": "656AE014-AEEC-46E8-A696-61FEA7932F21", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:*:*:*:*:*", "matchCriteriaId": "EB519FE0-9E7D-4E71-8873-356C9D7CEAB5", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp2:workstation:*:*:*:*:*", "matchCriteriaId": "A08D0EA1-DA1B-4C52-883A-3F156F032517", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:*:*:*:*:*", "matchCriteriaId": "DA267420-56C5-4697-B0AA-52932F78B24B", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:*:*:*:*:*", "matchCriteriaId": "93BA426E-DD51-44AC-BE78-3164670FF9E1", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:*:*:*:*:*", "matchCriteriaId": "224F8968-9F4C-4727-AAA3-61F5578EF54C", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp3:workstation:*:*:*:*:*", "matchCriteriaId": "02BE9817-E1AE-4619-8302-CA7AA4167F48", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp4:enterprise_server:*:*:*:*:*", "matchCriteriaId": "363E3895-A19B-42EC-B479-765168DC0B17", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:*:*:*:*:*", "matchCriteriaId": "FBBBF25A-709B-4716-9894-AD82180091AD", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:*:*:*:*:*", "matchCriteriaId": "407DA6E8-0832-49FE-AE14-35C104C237EC", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp4:workstation:*:*:*:*:*", "matchCriteriaId": "88B70B7A-5BCC-4626-AAC7-D1ACFF25D66E", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp5:enterprise_server:*:*:*:*:*", "matchCriteriaId": "81B7961D-151D-4773-80CB-CCD0456BFEAA", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:*:*:*:*:*", "matchCriteriaId": "82781A72-A34F-4668-9EE8-C203B04E3367", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:*:*:*:*:*", "matchCriteriaId": "AFE612D2-DF38-404F-AED1-B8C9C24012DE", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp5:workstation:*:*:*:*:*", "matchCriteriaId": "12ED7363-6EEE-4688-A9B7-C5EB1107A7B4", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6:enterprise_server:*:*:*:*:*", "matchCriteriaId": "B5CAF64E-98AA-4813-A2A2-5AC3387CF230", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:*:*:*:*:*", "matchCriteriaId": "BCDFDBBA-6C4F-472A-9F4F-461C424794E7", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:*:*:*:*:*", "matchCriteriaId": "BCC5E316-FB61-408B-BAA2-7FE03D581250", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6:workstation:*:*:*:*:*", "matchCriteriaId": "EDDD8DA8-D074-4543-AEDF-F856B5567F21", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:enterprise_server:*:*:*:*:*", "matchCriteriaId": "CA7BA525-6DB8-4444-934A-932AFED69816", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:*:*:*:*:*", "matchCriteriaId": "90CFA69B-7814-4F97-A14D-D76310065CF3", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:terminal_server:*:*:*:*:*", "matchCriteriaId": "2FECD4B0-23A0-4C0B-9888-D28A5941D848", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:workstation:*:*:*:*:*", "matchCriteriaId": "AB6ADBAF-6EB0-4CFA-9D33-A814AC20484E", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*", "matchCriteriaId": "BC176BB0-1655-4BEA-A841-C4158167CC9B", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*", "matchCriteriaId": "4BF263CB-4239-4DB0-867C-9069ED02CAD7", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*", "matchCriteriaId": "49693FA0-BF34-438B-AFF2-75ACC8A6D2E6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka \"Code Execution via Compiled HTML Help File.\""}], "id": "CVE-2002-0694", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-10-10T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/10254.php"}, {"source": "cve@mitre.org", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/10254.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 4E545C63-FE9C-4CA1-AF0F-D999D84D2AFD (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:* (string)

matchCriteriaId : 294EBA01-147B-4DA0-937E-ACBB655EDE53 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:* (string)

matchCriteriaId : 4E8B7346-F2AA-434C-A048-7463EC1BB117 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:* (string)

matchCriteriaId : BE1A6107-DE00-4A1C-87FC-9E4015165B5B (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:microsoft:windows_2000_terminal_services:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 9D34EFE5-22B7-4E8D-B5B2-2423C37CFFA7 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp1:*:*:*:*:*:* (string)

matchCriteriaId : 8208AFC9-0EFC-4A90-AD5A-FD94F5542885 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp2:*:*:*:*:*:* (string)

matchCriteriaId : 4D4168AE-D19E-482E-8F2B-3E798B2D84E7 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:microsoft:windows_2000_terminal_services:*:sp3:*:*:*:*:*:* (string)

matchCriteriaId : B5E149E7-B748-44F6-BB55-68D5BF87AF41 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:* (string)

matchCriteriaId : 2D3B703C-79B2-4FA2-9E12-713AB977A880 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:microsoft:windows_98se:*:*:*:*:*:*:*:* (string)

matchCriteriaId : AA733AD2-D948-46A0-A063-D29081A56F1F (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:microsoft:windows_me:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 799DA395-C7F8-477C-8BC7-5B4B88FB7503 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:*:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : 237D7C18-C8D6-4FDB-A160-FA17DD46A55A (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:*:server:*:*:*:*:* (string)

matchCriteriaId : 7C5FCE82-1E2F-49B9-B504-8C03F2BCF296 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server:*:*:*:*:* (string)

matchCriteriaId : 6E7E6AD3-5418-4FEA-84B5-833059CA880D (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:*:workstation:*:*:*:*:* (string)

matchCriteriaId : 35346A7B-2CB5-446D-B0C3-1F21D71A746D (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : 064F4E76-1B89-4FA5-97ED-64624285C014 (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:*:*:*:*:* (string)

matchCriteriaId : 089A953C-8446-4E6F-B506-430C38DF37B1 (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:*:*:*:*:* (string)

matchCriteriaId : EA262C44-C0E6-493A-B8E5-4D26E4013226 (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp1:workstation:*:*:*:*:* (string)

matchCriteriaId : 416F06DD-980E-4A54-822D-CBA499FD1F86 (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : F66DC6FF-2B3D-4718-838F-9E055E89961F (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:*:*:*:*:* (string)

matchCriteriaId : 656AE014-AEEC-46E8-A696-61FEA7932F21 (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:*:*:*:*:* (string)

matchCriteriaId : EB519FE0-9E7D-4E71-8873-356C9D7CEAB5 (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp2:workstation:*:*:*:*:* (string)

matchCriteriaId : A08D0EA1-DA1B-4C52-883A-3F156F032517 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : DA267420-56C5-4697-B0AA-52932F78B24B (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:*:*:*:*:* (string)

matchCriteriaId : 93BA426E-DD51-44AC-BE78-3164670FF9E1 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:*:*:*:*:* (string)

matchCriteriaId : 224F8968-9F4C-4727-AAA3-61F5578EF54C (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp3:workstation:*:*:*:*:* (string)

matchCriteriaId : 02BE9817-E1AE-4619-8302-CA7AA4167F48 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp4:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : 363E3895-A19B-42EC-B479-765168DC0B17 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:*:*:*:*:* (string)

matchCriteriaId : FBBBF25A-709B-4716-9894-AD82180091AD (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:*:*:*:*:* (string)

matchCriteriaId : 407DA6E8-0832-49FE-AE14-35C104C237EC (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp4:workstation:*:*:*:*:* (string)

matchCriteriaId : 88B70B7A-5BCC-4626-AAC7-D1ACFF25D66E (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp5:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : 81B7961D-151D-4773-80CB-CCD0456BFEAA (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:*:*:*:*:* (string)

matchCriteriaId : 82781A72-A34F-4668-9EE8-C203B04E3367 (string)

vulnerable : true (boolean)

}

33 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:*:*:*:*:* (string)

matchCriteriaId : AFE612D2-DF38-404F-AED1-B8C9C24012DE (string)

vulnerable : true (boolean)

}

34 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp5:workstation:*:*:*:*:* (string)

matchCriteriaId : 12ED7363-6EEE-4688-A9B7-C5EB1107A7B4 (string)

vulnerable : true (boolean)

}

35 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : B5CAF64E-98AA-4813-A2A2-5AC3387CF230 (string)

vulnerable : true (boolean)

}

36 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:*:*:*:*:* (string)

matchCriteriaId : BCDFDBBA-6C4F-472A-9F4F-461C424794E7 (string)

vulnerable : true (boolean)

}

37 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:*:*:*:*:* (string)

matchCriteriaId : BCC5E316-FB61-408B-BAA2-7FE03D581250 (string)

vulnerable : true (boolean)

}

38 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6:workstation:*:*:*:*:* (string)

matchCriteriaId : EDDD8DA8-D074-4543-AEDF-F856B5567F21 (string)

vulnerable : true (boolean)

}

39 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:enterprise_server:*:*:*:*:* (string)

matchCriteriaId : CA7BA525-6DB8-4444-934A-932AFED69816 (string)

vulnerable : true (boolean)

}

40 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:*:*:*:*:* (string)

matchCriteriaId : 90CFA69B-7814-4F97-A14D-D76310065CF3 (string)

vulnerable : true (boolean)

}

41 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:terminal_server:*:*:*:*:* (string)

matchCriteriaId : 2FECD4B0-23A0-4C0B-9888-D28A5941D848 (string)

vulnerable : true (boolean)

}

42 : { »

criteria : cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:workstation:*:*:*:*:* (string)

matchCriteriaId : AB6ADBAF-6EB0-4CFA-9D33-A814AC20484E (string)

vulnerable : true (boolean)

}

43 : { »

criteria : cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:* (string)

matchCriteriaId : BC176BB0-1655-4BEA-A841-C4158167CC9B (string)

vulnerable : true (boolean)

}

44 : { »

criteria : cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:* (string)

matchCriteriaId : 4BF263CB-4239-4DB0-867C-9069ED02CAD7 (string)

vulnerable : true (boolean)

}

45 : { »

criteria : cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:* (string)

matchCriteriaId : 49693FA0-BF34-438B-AFF2-75ACC8A6D2E6 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : The HTML Help facility in Microsoft Windows 98, 98 Second Edition, Millennium Edition, NT 4.0, NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP uses the Local Computer Security Zone when opening .chm files from the Temporary Internet Files folder, which allows remote attackers to execute arbitrary code via HTML mail that references or inserts a malicious .chm file containing shortcuts that can be executed, aka "Code Execution via Compiled HTML Help File." (string)

}

]

id : CVE-2002-0694 (string)

lastModified : 2025-04-03T01:03:51.193 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : HIGH (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 7.5 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:L/Au:N/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : true (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2002-10-10T04:00:00.000 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://www.iss.net/security_center/static/10254.php (string)

}

1 : { »

source : cve@mitre.org (string)

url : https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055 (string)

}

2 : { »

source : cve@mitre.org (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://www.iss.net/security_center/static/10254.php (string)

}

4 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-055 (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A403 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-Other (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object