SID 8419
References
URL
- http://browserfun.blogspot.com/2006/07/mobb-18-webviewfoldericon-setslice.html
- http://www.microsoft.com/technet/security/bulletin/ms06-057.mspx
Bugtraq
CVE
Msg
"WEB-ACTIVEX WebViewFolderIcon.WebViewFolderIcon.1 ActiveX function call access"
Summary
This event is generated when an attempt is made to exploit a known vulnerability in Microsoft Internet Explorer via an ActiveX control.
Classtype
attempted-user
Impact
A successful attack can cause a buffer overflow and the subsequent execution of arbitrary code with system level privileges on a vulnerable host.
Detailed Information
A vulnerability exists in the way that Internet Explorer handles ActiveX controls that may present an attacker with the opportunity to run code of their choosing on a host.
In particular, this event is generated when a call to the component WebViewFolderIcon.WebViewFolderIcon.1 is made.
Affected Systems
- Microsoft Internet Explorer
Attack Scenarios
An attacker can host a web site that will return code of their choosing to the object when a victim clicks on a malicious link.
Ease Of Attack
Simple.
False Positives
None known.
False Negatives
None known.
Corrective Action
Upgrade to the most current non-affected version of the product.
Contributors
- Sourcefire Vulnerability Research Team
- Alex Kirk
- Nigel Houghton
