SecurityHome.eu Exploit:JS/SetSlice

Home / malware PDF

Exploit:JS/SetSlice

First posted on 15 February 2019.
Source: Microsoft
Aliases :
There are no other names known for Exploit:JS/SetSlice.
Explanation :
Exploit:JS/SetSlice is a detection for exploit code that attempts to take advantage of a vulnerability described in CVE-2006-3730 affecting Microsoft Internet Explorer 6. This exploit may be encountered when visiting a web page containing the malicious code. A vulnerability was present in an ActiveX control named "WebViewFolderIcon.WebViewFolderIcon.1", also referenced by the following class IDs, in a function called "setSlice": {e5df9d10-3b52-11d1-83e8-00a0c90dc849} {844F4806-E8A8-11d2-9652-00C04FC30871} A successful exploit causes in a heap overflow condition which results in the execution of arbitrary code, at the discretion of an attacker. The exploit is mitigated by Microsoft Security Bulletin MS06-057 released in 2006. Analysis by Chris Stubbs
Last update 15 February 2019

TOP

Malware :

RATDispenser
Raspberry Robin
ObliqueRAT
DoppelPaymer
Dridex

Last 20