Oval Definition:
oval:org.mitre.oval:def:1280
Revision Date
:
2011-05-16
Version
:
46
Title
:
Windows 2000 Color Management Module Buffer Overflow
Description
:
Buffer overflow in the Microsoft Color Management Module for Windows allows remote attackers to execute arbitrary code via an image with crafted ICC profile format tags.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2005-1219
Platform(s)
:
Microsoft Windows 2000
Product(s)
:
Microsoft Color Management Module
Definition Synopsis
Windows 2000 (sp4 or earlier) is installed
Windows 2000 is installed
AND
NOT
Win2K/XP/2003 service pack 5 (or later) is installed
AND
the version of mscms.dll is less than 5.0.2195.7054
AND
NOT
the patch KB901214 is installed
BACK