Oval Definition:	oval:org.mitre.oval:def:190
Revision Date: 2011-05-16 Version: 47 Title: ActiveX Certificate Enrollment Unauthorized Remote Certificate Deletion Description: Unknown vulnerability in the Certificate Enrollment ActiveX Control in Microsoft Windows 98, Windows 98 Second Edition, Windows Millennium, Windows NT 4.0, Windows 2000, and Windows XP allow remote attackers to delete digital certificates on a user's system via HTML. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-0699 Platform(s): Microsoft Windows 2000 Product(s): Certificate Enrollment Control Definition Synopsis Software section Windows 2000 is installed AND the version of xenroll.dll is less than 5.131.3659.0 AND NOT Patch Q323172 Installed AND NOT SP4 or later Installed AND Configuration section ActiveX Enabled use machine settings rather than individual user settings AND ActiveX Enabled In At Least One Zone
BACK