This PoC demonstrates a 2-click binary planting exploit through Internet Explorer on 32-bit Windows XP using a .wri file placed inside a remote special folder (as described in The Anatomy of COM Server-Based Binary Planting Exploits).
This PoC will not work from our Web site if you have WebDAV disabled or Microsoft's CWDIllegalInDllSearch hotfix installed. In this case you can download this PoC here and try it out locally.