Oval Definition:	oval:org.mitre.oval:def:1597
Revision Date: 2014-02-24 Version: 48 Title: Win2K/XP,SP1 COM Object Instantiation Memory Corruption Vulnerability Description: Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer, aka a variant of the "COM Object Instantiation Memory Corruption Vulnerability," a different vulnerability than CVE-2005-2127. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-2831 Platform(s): Microsoft Windows 2000 Microsoft Windows XP Product(s): Microsoft Internet Explorer Definition Synopsis Win2K or XP,SP1 is installed Windows 2000 is installed OR Windows XP 32-bit SP1 is installed Windows XP 32-bit edition is installed Windows XP is installed AND 32-Bit version of Windows is installed AND Win2K/XP/2003/Vista service pack 1 is installed AND Internet Explorer 6 Service Pack 1 is installed AND the version of mshtml.dll is less than 6.0.2800.1528
BACK