Oval Definition:	oval:org.mitre.oval:def:1146
Revision Date: 2014-02-24 Version: 49 Title: FTP Download Destination Tampering Vulnerability (Windows 2000) Description: The FTP client in Windows XP SP1 and Server 2003, and Internet Explorer 6 SP1 on Windows 2000 SP4, when "Enable Folder View for FTP Sites" is enabled and the user manually initiates a file transfer, allows user-assisted, remote FTP servers to overwrite files in arbitrary locations via crafted filenames. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-2126 Platform(s): Microsoft Windows 2000 Product(s): Definition Synopsis Windows 2000 is installed AND Win2K/XP/2003 service pack 4 is installed AND Internet Explorer 6 Service Pack 1 is installed AND msieftp.dll is less than 5.50.4956.500
BACK