Oval Definition:	oval:org.mitre.oval:def:1114
Revision Date: 2014-05-05 Version: 5 Title: IE AbusiveParent Vulnerability (32-bit Server 2003) Description: The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject arbitrary web script into other domains by setting a name for a window, opening a child page whose target is the window with the given name, then injecting the script from the parent into the child using execScript, as demonstrated by "AbusiveParent" in Internet Explorer 6.0.2900.2180. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-1319 Platform(s): Microsoft Windows Server 2003 Product(s): Microsoft Internet Explorer Definition Synopsis Microsoft Windows Server 2003 32-Bit Edition Windows Server 2003 is installed AND 32-Bit version of Windows is installed AND the version of dhtmled.ocx is less than 6.1.0.9231 AND NOT the patch kb891781 is installed (Hotfix key)
BACK