Oval Definition:	oval:org.mitre.oval:def:13884
Revision Date: 2014-08-18 Version: 46 Title: Internet Explorer Insecure Library Loading Vulnerability Description: Untrusted search path vulnerability in Microsoft Internet Explorer 9 on Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains an HTML file, aka "Internet Explorer Insecure Library Loading Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2011-2019 Platform(s): Microsoft Windows 7 Microsoft Windows Server 2008 R2 Product(s): Microsoft Internet Explorer 9 Definition Synopsis Windows 7 x86/x64, Windows 7 x86/x64, Server 2008 R2 x64 Microsoft Windows 7 (32-bit) is installed OR Microsoft Windows 7 x64 Edition is installed OR Microsoft Windows Server 2008 R2 x64 Edition is installed AND Microsoft Internet Explorer 9 is installed AND GDR or LDR Service branch Mshtml.dll version is less than 9.0.8112.16440 OR LDR Mshtml.dll version is greater than or equal to 9.0.8112.20000 AND Mshtml.dll version is less than 9.0.8112.20544
BACK