Microsoft Security Advisory MS02-055 - A remotely exploitable buffer overflow in the HTML Help facility in Windows allows remote code execution via web page or HTML email on all versions of Windows.
40085ad491b3bf7c5e066a96491cdee2d23461e4cae9eca0322bf8b25086bcb8