Exploitation Summary
EIP tracks 1 public exploit for CVE-2006-3281. PoCs published by Plebo Aesdi Nael.
AI-analyzed exploit summary This exploit demonstrates two vulnerabilities in Internet Explorer: one allowing cross-domain content reading and another enabling remote code execution via a double-click on a specially crafted HTML file. The PoC leverages insecure handling of Drag and Drop events and SMB/WebDAV shares to execute arbitrary code.
Description
Microsoft Internet Explorer 6.0 does not properly handle Drag and Drop events, which allows remote user-assisted attackers to execute arbitrary code via a link to an SMB file share with a filename that contains encoded ..\ (%2e%2e%5c) sequences and whose extension contains the CLSID Key identifier for HTML Applications (HTA), aka "Folder GUID Code Execution Vulnerability." NOTE: directory traversal sequences were used in the original exploit, although their role is not clear.
Exploits (1)
This exploit demonstrates two vulnerabilities in Internet Explorer: one allowing cross-domain content reading and another enabling remote code execution via a double-click on a specially crafted HTML file. The PoC leverages insecure handling of Drag and Drop events and SMB/WebDAV shares to execute arbitrary code.