Oval Definition:
oval:org.mitre.oval:def:1673
Revision Date
:
2007-09-27
Version
:
43
Title
:
CSS Memory Corruption Vulnerability
Description
:
Unspecified vulnerability in Internet Explorer 5.01 and 6 SP1 allows remote attackers to execute arbitrary code via crafted Cascading Style Sheets (CSS) strings that trigger memory corruption during parsing, related to use of out-of-bounds pointers.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2007-0943
Platform(s)
:
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows XP
Product(s)
:
Microsoft Internet Explorer
Definition Synopsis
IE 5.01,SP4 on Win2k,SP4
Microsoft Windows 2000 SP4 or later is installed
AND
Microsoft Internet Explorer 5.01 SP4 is installed
AND
the version of mshtml.dll is less than 5.0.3854.1200
BACK