Oval Definition:	oval:org.mitre.oval:def:2545
Revision Date: 2013-04-15 Version: 51 Title: HyperTerminal Session File Vulnerability (Windows XP,SP2) Description: HyperTerminal application for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the length of a value that is saved in a session file, which allows remote attackers to execute arbitrary code via a malicious HyperTerminal session file (.ht), web site, or Telnet URL contained in an e-mail message, triggering a buffer overflow. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-0568 Platform(s): Microsoft Windows XP Product(s): HyperTerminal Definition Synopsis Software section Windows XP is installed AND Win2K/XP/2003/Vista/2008 service pack 2 is installed AND the version of hypertrm.dll is less than 5.1.2600.2563 AND NOT the patch WindowsXP-KB87339-x86-ENU.exe is installed AND Configuration section If key present hyperterminal will automatically open session files OR If the Hyperterminal client is registered as the default telnet client
BACK