Oval Definition:	oval:org.mitre.oval:def:1451
Revision Date: 2014-02-24 Version: 48 Title: IE5 Multiple Event Handler Memory Corruption (Win2K) Description: Buffer overflow in mshtml.dll in Microsoft Internet Explorer 6.0.2900.2180, and probably other versions, allows remote attackers to execute arbitrary code via an HTML tag with a large number of script action handlers such as onload and onmouseover, as demonstrated using onclick, aka the "Multiple Event Handler Memory Corruption Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-1245 Platform(s): Microsoft Windows 2000 Product(s): Microsoft Internet Explorer Definition Synopsis Windows 2000 Service Pack 4 (or later) is installed Windows 2000 is installed AND Win2K/XP/2003 service pack 4 (or later) is installed AND Internet Explorer 5.01 (any patch level) is installed AND the version of mshtml.dll is less than 5.0.3839.2200
BACK