Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands via long arguments to the OpenHelp method.
https://exchange.xforce.ibmcloud.com/vulnerabilities/3314
http://www.securityfocus.com/bid/669