- Servers
- Desktops
- Laptops
- Tablet PCs
- PDAs
- Smart phones
- Digital cameras
- Camcorders
- Printers & multifunction devices
- Scanners
- Copiers
- Monitors & projectors
- Hard drives & burners
- Peripherals
- Productivity
- Accounting & finance
- Data management
- Graphics & publishing
- Web publishing
- Operating systems
- Security & utilities
- Downloads & trial software
- Handheld software
- Instant messaging
- Cell phones & plans
- Voice over Internet
- Telephones
- Routers & gateways
- Wireless networking
- Network adapters
- Internet access
- Web hosting
- Domain search
- Hotspot Zone
- Desktops
- Laptops
- Servers and storage
- PDAs
- Cell phones
- Monitors & projectors
- Printers
- Networking and wireless
- Security and utility software
- Productivity software
- Access, hosting, and services
- All business buying guides
Rob Vamosi's
award-winning
column on Internet threats and how to counter them
Delivered Mondays
CNET Security Center: Your complete source of antivirus and Internet security information.
Integer overflow in Microsoft Internet Explorer 6
By Robert Vamosi (July 25, 2006, revised September 29, 2006)
There's a vulnerability within Microsoft Internet Explorer 6 while running on a fully patched Windows XP SP2 system that allows remote attackers to cause a denial of service (crash). This flaw is due to an integer overflow error in the Common Controls library "comctl32.dll" when processing a "WebViewFolderIcon" object with a specially crafted "setSlice()" method. Specifically, a 0x7fffffff argument to the setSlice method on a WebViewFolderIcon ActiveX object may lead to an invalid memory copy, which can be exploited by attackers. Successful execution, however, requires that the victim visit a specially crafted Web page.
By Robert Vamosi (July 25, 2006, revised September 29, 2006)
QUICK FACTS
Name: Integer overflow in Microsoft Internet Explorer 6
Date first reported: 07/21/06
Vulnerable software: Internet Explorer 6 on Windows XP SP2
What it does: Causes a denial of service (crash) or could allows remote access.
Recommendations: Turn off ActiveX scripting within Internet Explorer.
Exploit code available:Yes
Vendor patch available: Yes
Date first reported: 07/21/06
Vulnerable software: Internet Explorer 6 on Windows XP SP2
What it does: Causes a denial of service (crash) or could allows remote access.
Recommendations: Turn off ActiveX scripting within Internet Explorer.
Exploit code available:Yes
Vendor patch available: Yes
Additional resources:
