CVE-2006-3351

Name of the Vulnerable Software and Affected Versions Windows Explorer (explorer.exe) versions on Windows XP and 2003

Description The issue allows user-assisted attackers to cause a denial of service, potentially leading to repeated crashes, and may also enable the execution of arbitrary code. This is achieved through a .url file containing an InternetShortcut tag with a long URL and a large number of "file:" specifiers.

Recommendations For Windows XP and 2003, avoid using .url files with long URLs and multiple "file:" specifiers in the InternetShortcut tag until a fix is available. As a temporary workaround, consider restricting the use of .url files with InternetShortcut tags to minimize the risk of exploitation.