Definition

Windows Shell Remote Code Execution Vulnerability

oval:org.mitre.oval:def:339

Integer overflow in Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a 0x7fffffff argument to the setSlice method on a WebViewFolderIcon ActiveX object which leads to an invalid memory copy.

Family:

windows

Status:

ACCEPTED

Platform(s):

Microsoft Windows Server 2003
Microsoft Windows XP
Microsoft Windows 2000

Class:

vulnerability

Reference(s):

CVE-2006-3730

Product(s):