Published: 21/07/2006 Updated: 23/07/2021

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 955

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Integer overflow in Microsoft Internet Explorer 6 on Windows XP SP2 allows remote malicious users to cause a denial of service (crash) and execute arbitrary code via a 0x7fffffff argument to the setSlice method on a WebViewFolderIcon ActiveX object, which leads to an invalid memory copy.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet_explorer 6.0
microsoft ie 6.0

<HTML& ...

# This module is part of the metasploit framework3 # svn co metasploitcom/svn/framework3/trunk/ require 'msf/core' module Msf class Exploits::Windows::Browser::WebView_SetSlice < Msf::Exploit::Remote include Exploit::Remote::HttpServer::Html def initialize(info = {}) super(update_info(info, 'Name' => 'Internet E ...

#!/usr/bin/perl # # Microsoft Internet Explorer WebViewFolderIcon setSlice() D0wnLoad & Exec POC # # Author: Vampyroteuthis Infernalis <skyhole [at] gmailcom> # Greetz: H D Moor, Dark Eagle, Jamikazu # # use strict; my $sco = "\xEB\x54\x8B\x75\x3C\x8B\x74\x35\x78\x03\xF5\x56\x8B\x76\x20\x03" "\xF5\x33\xC9\x49\x41\xAD\x33\xDB\x36\x0F ...

## # $Id: ms06_057_webview_setslicerb 9669 2010-07-03 03:13:45Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/cor ...

/* *----------------------------------------------------------------------- * * Microsoft Internet Explorer WebViewFolderIcon (setSlice) Exploit (0day) * Works on all Windows XP versions including SP2 * * Author: LukeHack * Mail: lukehack@fastwebnetit * * Bug discovered by Computer H D Moore (wwwmetasploitcom) * * Credit: metasploit, jam ...

CWE-94 http://browserfun.blogspot.com/2006/07/mobb-18-webviewfoldericon-setslice.html http://www.securityfocus.com/bid/19030 http://www.osvdb.org/27110 http://riosec.com/msie-setslice-vuln http://www.us-cert.gov/cas/techalerts/TA06-270A.html http://www.kb.cert.org/vuls/id/753044 http://isc.sans.org/diary.php?storyid=1742 http://securitytracker.com/id?1016941 http://secunia.com/advisories/22159 http://www.us-cert.gov/cas/techalerts/TA06-283A.html http://www.vupen.com/english/advisories/2006/2882 https://exchange.xforce.ibmcloud.com/vulnerabilities/27804 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A339 https://www.exploit-db.com/exploits/2440 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-057 http://www.securityfocus.com/archive/1/449179/100/0/threaded http://www.securityfocus.com/archive/1/447490/100/0/threaded http://www.securityfocus.com/archive/1/447426/100/0/threaded http://www.securityfocus.com/archive/1/447383/100/100/threaded http://www.securityfocus.com/archive/1/447174/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/2448/https://www.kb.cert.org/vuls/id/753044

CVE-2006-3730

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect