Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3281

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2006-3281
Last Modified 27 Sep 2011 12:00:00
Published 28 Jun 2006 06:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3281

Summary

Microsoft Internet Explorer 6.0 does not properly handle Drag and Drop events, which allows remote user-assisted attackers to execute arbitrary code via a link to an SMB file share with a filename that contains encoded ..\ (%2e%2e%5c) sequences and whose extension contains the CLSID Key identifier for HTML Applications (HTA), aka "Folder GUID Code Execution Vulnerability." NOTE: directory traversal sequences were used in the original exploit, although their role is not clear.

Vulnerable Systems

Application

  • Microsoft Ie 6.0


References

CERT - TA06-220A

CERT-VN - VU#655100

XF - ie-hta-fileshare-command-execution(27456)

VUPEN - ADV-2006-2553

BID - 19389

MS - MS06-045

SECTRACK - 1016388

SECUNIA - 20825

MISC - http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20060627/3d930eda/PLEBO-2006.06.16-IE_ONE_MINOR_ONE_MAJOR.obj

FULLDISC - 20060627 IE_ONE_MINOR_ONE_MAJOR


Last Updated: 27 May 2016 10:42:57