Oval Definition:oval:org.mitre.oval:def:1191
Revision Date:2011-05-16Version:46
Title:Win2K COM object Remote Code Execution Vulnerability
Description:Unspecified vulnerability in Windows Explorer in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers to execute arbitrary code via attack vectors involving COM objects and "crafted files and directories," aka the "Windows Shell Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2006-0012
Platform(s):Microsoft Windows 2000
Product(s):
Definition Synopsis
  • Windows 2000 Service Pack 4 (or later) is installed
  • Windows 2000 is installed
  • AND Win2K/XP/2003 service pack 4 (or later) is installed
  • AND the version of shell32.dll is less than 5.0.3900.7078
    • BACK