Oval Definition:	oval:org.cisecurity:def:474
Revision Date: 2016-05-27 Version: 40 Title: Internet Explorer Memory Corruption Vulnerability - CVE-2016-0164 (MS16-037) Description: Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2016-0164 Platform(s): Microsoft Windows 7 Microsoft Windows 8.1 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Product(s): Microsoft Internet Explorer 10 Microsoft Internet Explorer 11 Definition Synopsis Internet Explorer 10 is installed + Windows Server 2012 + vulnerable file version Microsoft Internet Explorer 10 is installed AND Microsoft Windows Server 2012 is installed AND Check if the version of mshtml.dll is less than 10.0.9200.21811 OR Internet Explorer 11 is installed + vulnerable windows OS + vulnerable file version Microsoft Internet Explorer 11 is installed AND vulnerable windows OS + vulnerable file version R2/Win7/2012/2012 R2 Server + vulnerable file version R2/Win7/2012/2012 R2 Server version Microsoft Windows 7 is installed OR Microsoft Windows Server 2008 R2 is installed OR Microsoft Windows Server 2012 is installed AND Check if the version of mshtml.dll is less than 11.0.9600.18283
BACK