MS.IE.WebViewFolderIcon.DoS
Description
Microsoft Internet Explorer 6 on Windows XP SP2 is vulnerable to a denial of service attack. The vulnerability allows remote attackers to cause a denial of service (crash) because the application fails to properly handle error conditions. The application crashes when passed a 0x7fffffff argument to the setSlice method on a WebViewFolderIcon ActiveX object. This causes an invalid memory copy and crashes the browser.
Affected Products
Microsoft Internet Explorer 6.0 SP1
Microsoft Internet Explorer 6.0
Impact
Denial of Service.
Recommended Actions
Currently Fortinet is not aware of any vendor-supplied patches for this issue.
Users should never visit sites of questionable integrity or follow links provided by unfamiliar or untrusted sources.
Disable the execution of script code or active content in your web browser.
Disabling scripting and active content in the Internet Zone may limit exposure to this and other vulnerabilities.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |