Status Tracking Note TRTA06-270A

Microsoft Internet Explorer WebViewFolderIcon ActiveX Vulnerability

The Microsoft Windows WebViewFolderIcon ActiveX control contains an integer overflow vulnerability that could allow a remote attacker to execute arbitrary code.

Event Information

Date (UTC)	Description
2006-10-10	Microsoft Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remote Code Execution Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS06-057 to address this issue.
2006-10-10	Microsoft MS06-057: Vulnerability in Windows Explorer Could Allow Remote Execution (923191) This update resolves a newly discovered, publicly reported vulnerability.
2006-10-02	Microsoft Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remote Code Execution We are aware of Web sites attempting to use the reported vulnerability to install malware. Our investigation into these Web sites shows that, in most cases, attempts to install malicious software by exploiting this vulnerability fail.
2006-09-28	Microsoft Microsoft Security Advisory (926043): Vulnerability in Windows Shell Could Allow Remote Code Execution Microsoft is investigating new public reports of a vulnerability in supported versions of Microsoft Windows.
2006-09-28	Microsoft Internet Explorer WebViewFolderIcon (setSlice) Exploit (0day) a proof-of-concept code for this vulnerability (CVE-2006-3730,VU#753044) #Cid: 19030_invoke_calc_pof.html #Tested: Windows XP
2006-09-27 22:49	US-CERT TA06-270A: Microsoft Internet Explorer WebViewFolderIcon ActiveX Vulnerability Via US-CERT Mailing List
2006-09-27 17:08	SANS Internet Storm Center MSIE: One patched, one pops up again (setslice) Microsoft confirms yet another powerpoint vulnerability that leads to code execution.
2006-09-27	MS Internet Explorer WebViewFolderIcon setSlice() Overflow Exploit a proof-of-concept code for this vulnerability (CVE-2006-3730,VU#753044) #Cid: webview_setslice.rb
2006-09-27	US-CERT Public Exploit Code for Microsoft WebViewFolderIcon ActiveX Control Vulnerability US-CERT is aware of publicly available exploit code for a new, unpatched vulnerability in Microsoft Internet Explorer. The exploit code targets a vulnerability in the Microsoft WebViewFolderIcon ActiveX control.
2006-07-18 08:38	WebViewFolderIcon setSlice a proof-of-concept code for this vulnerability (CVE-2006-3730,VU#753044) #Cid: MoBB18_poc.txt


Date first published (UTC):	2006-09-28T06:14+00:00
Date last updated (UTC):	2006-10-11T16:29+00:00