Oval Definition:oval:org.mitre.oval:def:1294
Revision Date:2014-02-24Version:7
Title:IFRAME Vulnerability
Description:Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-1050
Platform(s):Microsoft Windows 2000
Microsoft Windows 98
Microsoft Windows XP
Product(s):Microsoft Internet Explorer
Definition Synopsis
  • Internet Explorer 6.0 or IE 6.0 SP1 is installed
  • Internet Explorer 6 is installed
  • OR Internet Explorer 6 Service Pack 1 is installed
  • AND patch kb889293 is installed (hotfix or ID)
  • the patch kb889293 is installed (Installed Components key)
  • OR the patch kb889293 is installed
  • BACK