LukeHack

2 exploits Active since Jul 2006

CVE-2006-3730 EXPLOITDB HIGH c WORKING POC

Microsoft IE - Code Injection

Integer overflow in Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a 0x7fffffff argument to the setSlice method on a WebViewFolderIcon ActiveX object, which leads to an invalid memory copy.

CVSS 8.8

View Code

CVE-2006-5745 EXPLOITDB c WORKING POC

Microsoft XML Core Services 4.0 - RCE

Unspecified vulnerability in the setRequestHeader method in the XMLHTTP (XML HTTP) ActiveX Control 4.0 in Microsoft XML Core Services 4.0 on Windows, when accessed by Internet Explorer, allows remote attackers to execute arbitrary code via crafted arguments that lead to memory corruption, a different vulnerability than CVE-2006-4685. NOTE: some of these details are obtained from third party information.

View Code