Oval Definition:
oval:org.mitre.oval:def:216
Revision Date
:
2014-02-24
Version
:
45
Title
:
IE v5.01,SP4 Bitmap Integer Overflow Vulnerability
Description
:
Integer overflow in imgbmp.cxx for Windows 2000 allows remote attackers to execute arbitrary code via a BMP image with a large bfOffBits value.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2004-0566
Platform(s)
:
Microsoft Windows 2000
Product(s)
:
Microsoft Internet Explorer
Definition Synopsis
Internet Explorer 5.01 Service Pack 4 is installed
AND
the version of mshtml.dll is less than 5.0.3819.300
AND
NOT
the patch kb832894 is installed (Installed Components key)
BACK