Status Tracking Note TRTA06-270A

Microsoft Internet Explorer WebViewFolderIcon ActiveX Vulnerability

Overview

The Microsoft Windows WebViewFolderIcon ActiveX control contains an integer overflow vulnerability that could allow a remote attacker to execute arbitrary code.
Event Information


Date (UTC)Description
2006-10-10 Microsoft
Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remote Code Execution
Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS06-057 to address this issue.
2006-10-10 Microsoft
MS06-057: Vulnerability in Windows Explorer Could Allow Remote Execution (923191)
This update resolves a newly discovered, publicly reported vulnerability.
2006-10-02 Microsoft
Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remote Code Execution
We are aware of Web sites attempting to use the reported vulnerability to install malware. Our investigation into these Web sites shows that, in most cases, attempts to install malicious software by exploiting this vulnerability fail.
2006-09-28 Microsoft
Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remote Code Execution
Microsoft is investigating new public reports of a vulnerability in supported versions of Microsoft Windows.
2006-09-28
Microsoft Internet Explorer WebViewFolderIcon (setSlice) Exploit (0day)
a proof-of-concept code for this vulnerability (CVE-2006-3730,VU#753044)
#Cid: 19030_invoke_calc_pof.html
#Tested: Windows XP
2006-09-27 22:49 US-CERT
TA06-270A: Microsoft Internet Explorer WebViewFolderIcon ActiveX Vulnerability
Via US-CERT Mailing List
2006-09-27 17:08 SANS Internet Storm Center
MSIE: One patched, one pops up again (setslice)
Microsoft confirms yet another powerpoint vulnerability that leads to code execution.
2006-09-27
MS Internet Explorer WebViewFolderIcon setSlice() Overflow Exploit
a proof-of-concept code for this vulnerability (CVE-2006-3730,VU#753044)
#Cid: webview_setslice.rb
2006-09-27 US-CERT
Public Exploit Code for Microsoft WebViewFolderIcon ActiveX Control Vulnerability
US-CERT is aware of publicly available exploit code for a new, unpatched vulnerability in Microsoft Internet Explorer. The exploit code targets a vulnerability in the Microsoft WebViewFolderIcon ActiveX control.
2006-07-18 08:38
WebViewFolderIcon setSlice
a proof-of-concept code for this vulnerability (CVE-2006-3730,VU#753044)
#Cid: MoBB18_poc.txt


Date first published (UTC): 2006-09-28T06:14+00:00
Date last updated (UTC): 2006-10-11T16:29+00:00