Follow:

Exploit:Win/ActiveX.Hhctlr.RCE!CVE-2006-3357

Severity rating
Critical

Class/Type
Exploit

Discovered date
2006-08-08T00:00:00

Attack vector
Remote

Authentication required
No

Public exploits available
Yes

Signature detection
Medium



On this page




Description

A vulnerability exists in the HTML Help ActiveX control that could allow remote code execution on an affected system.



Impact

An attacker who successfully exploited this vulnerability could take complete control of an affected system.



Technical details (analysis)

An attacker could exploit the vulnerability by constructing a malicious Web page that could potentially allow remote code execution if a user visited that page. HHCtrl object could be exploited by indexing into this object and setting memory locations with large buffers.



Affected software

Microsoft Internet Explorer 6.0
Microsoft Windows XP
Microsoft Windows Server 2003



Non-affected software

All applications not on the affected list.



References




Solutions




NIS signature

Name: Exploit:Win/ActiveX.Hhctlr.RCE!CVE-2006-3357
Release Date: 2006-08-08T00:00:00



Known false positives

No known false positives at this time.



Work-arounds

Disable the HTML Help ActiveX control from running within Internet Explorer 6 for Windows XP Service Pack 2.
Set Internet and Local intranet security zone settings to “High” to prompt before running ActiveX controls and active scripting in the Internet zone and in the Local intranet zone.
Restrict Web sites to only your trusted Web sites. Temporarily disable the HTML Help ActiveX control from running in Internet Explorer.