Oval Definition:	oval:org.mitre.oval:def:1507
Revision Date: 2014-02-24 Version: 49 Title: WinXP,SP2 File Download Dialog Box Manipulation Vulnerability Description: Multiple design errors in Microsoft Internet Explorer 5.01, 5.5, and 6 allow user-assisted attackers to execute arbitrary code by (1) overlaying a malicious new window above a file download box, then (2) using a keyboard shortcut and delaying the display of the file download box until the user hits a shortcut that activates the "Run" button, aka "File Download Dialog Box Manipulation Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-2829 Platform(s): Microsoft Windows XP Product(s): Microsoft Internet Explorer Definition Synopsis Windows XP 32 bit Service Pack 2 Win2K/XP/2003/Vista/2008 service pack 2 is installed AND Windows XP 32-bit edition is installed Windows XP is installed AND 32-Bit version of Windows is installed AND Internet Explorer 6 is installed AND the version of mshtml.dll is less than 6.0.2900.2802
BACK