OVAL Reference oval:org.mitre.oval:def:225

Oval Definition:

oval:org.mitre.oval:def:225

Revision Date:	2014-02-24	Version:	43
Title:	IE v5.5 Frames Cross-site Scripting Vulnerability
Description:	Cross-site scripting vulnerability (XSS) in Internet Explorer 5.01 through 6.0 allows remote attackers to read and execute files on the local system via web pages using the or element and javascript, aka "Frames Cross Site Scripting," as demonstrated using the PrivacyPolicy.dlg resource.</TD></TR><TR><TD CLASS="cvenobg"><B>Family</B>:</TD><TD CLASS="cvenobg">windows</TD><TD CLASS="cvenobg"><B>Class</B>:</TD><TD CLASS="cvenobg">vulnerability</TD></TR><TR><TD CLASS="cvenobg"><B>Status</B>:</TD><TD CLASS="cvenobg">ACCEPTED</TD><TD CLASS="cvenobg"><B>Reference(s)</B>:</TD><TD CLASS="cvenobg"><A HREF="/cgi-bin/skdb.pl/cvename/CVE-2002-1187.html">CVE-2002-1187</A><BR></TD></TR><TR><TD CLASS="cvenobg"><B>Platform(s)</B>:</TD><TD CLASS="cvenobg">Microsoft Windows 2000<BR></TD><TD CLASS="cvenobg"><B>Product(s)</B>:</TD><TD CLASS="cvenobg">Microsoft Internet Explorer<BR></TD></TR><TR><TD CLASS="cvebg" COLSPAN="4"><B>Definition Synopsis</B></TD></TR><TR><TD CLASS="cvenobg" COLSPAN="4"><LI CLASS="level1">Internet Explorer 5.5 Installed <LI CLASS="leaf2"><A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3078.html">Internet Explorer 5.5 Installed</A> <LI CLASS="leaf2"><B>OR</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3077.html">Internet Explorer 5.5 Installed</A> <LI CLASS="leaf2"><B>OR</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3076.html">Internet Explorer 5.5 Installed</A> <LI CLASS="leaf2"><B>OR</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3123.html">Internet Explorer 5.5 Service Pack 2 is installed</A> <LI CLASS="leaf1"><B>AND</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:2786.html">the version of mshtml.dll is less than 5.50.4922.900</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3117.html">the patch q328970 is installed (Installed Components key)</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3116.html">the patch q324929 is installed (Installed Components key)</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3115.html">the patch q810847 is installed (Installed Components key)</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3114.html">the patch q813489 is installed (Installed Components key)</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3113.html">the patch q818529 is installed (Installed Components key)</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3112.html">the patch q822925 is installed (Installed Components key)</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3111.html">the patch q828750 is installed (Installed Components key)</A> <LI CLASS="leaf1"><B>AND</B> <B>NOT</B> <A HREF="/cgi-bin/skdb.pl/OVAL/oval:org.mitre.oval:tst:3110.html">the patch q824145 is installed (Installed Components key)</A> </TD></TR></TABLE></CENTER></TD></TR> <TR><TD COLSPAN="2" ALIGN="CENTER"><A HREF="javascript:history.go(-1)">BACK</A></TD></TR> </table></center> </body> </html>