Vulnerability Bulletins

int(2721)

Vulnerability Bulletins

Ejecución de código arbitrario en Windows Shell
Vulnerability classification
Property	Value
Confidence level	Oficial
Impact	Obtener acceso
Dificulty	Principiante
Required attacker level	Acceso remoto sin cuenta a un servicio exotico
System information
Property	Value
Affected manufacturer	Microsoft
Affected software	Microsoft Internet Explorer 6
Description
Se ha descubierto una vulnerabilidad de tipo desbordamiento de entero en Microsoft Internet Explorer 6 en Windows XP SP2. La vulnerabilidad reside en un error en el método "setSlice" del objeto ActiveX "WebViewFolderIcon". Un atacante remoto podría causar una denegación de servicio y posiblemente ejecutar código mediante un parámetro "0x7fffffff" al método "setSlice", lo que causar una copia de memoria inválida.
Solution
Actualización de software Microsoft Microsoft Windows 2000 Service Pack 4 http://www.microsoft.com/downloads/details.aspx?FamilyId=756f53a7-28dc-422a-a691-c1bbfcbf3d0c Microsoft Windows XP Service Pack 1 Microsoft Windows XP Service Pack 2 http://www.microsoft.com/downloads/details.aspx?FamilyId=235bca55-8d43-4eaf-8970-a55bc3165e3d Microsoft Windows XP Professional x64 http://www.microsoft.com/downloads/details.aspx?FamilyId=96271f96-0d8e-4ab1-b131-2b37fca7e6e7 Microsoft Windows Server 2003 Microsoft Windows Server 2003 SP1 http://www.microsoft.com/downloads/details.aspx?FamilyId=48f2314b-b268-468c-919c-593e06af4453 Microsoft Windows Server 2003 Itanium Microsoft Windows Server 2003 SP1 Itanium http://www.microsoft.com/downloads/details.aspx?FamilyId=6507e201-b84e-432a-8797-23b586ad15ae Microsoft Windows Server 2003 x64 http://www.microsoft.com/downloads/details.aspx?FamilyId=2b39693f-aabc-49c6-9d1a-6791f80f8f22
Standar resources
Property	Value
CVE	CVE-2006-3730
BID	19030
Other resources
Microsoft Security Advisory (926043) http://www.microsoft.com/technet/security/advisory/926043.mspx Microsoft Security Bulletin (MS06-057) http://www.microsoft.com/technet/security/Bulletin/MS06-057.mspx Browser Fun - MoBB #18: WebViewFolderIcon setSlice http://browserfun.blogspot.com/2006/07/webviewfoldericon-setslice.html#links OSVDB ID (27110) http://osvdb.org/27110

Version history
Version	Comments	Date
1.0	Aviso emitido	2006-10-05
1.1	Aviso emitido OSVDB	2006-10-09
2.0	Aviso emitido por Microsoft (MS06-057)	2006-10-11

Vulnerability Bulletins

Ejecución de código arbitrario en Windows Shell

Vulnerability classification

System information

Description

Solution

Standar resources

Other resources

Version history