Oval Definition:	oval:org.mitre.oval:def:26288
Revision Date: 2014-10-06 Version: 45 Title: Internet Explorer Memory Corruption Vulnerability - CVE-2014-4050 (MS14-051) Description: Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-2796, CVE-2014-2808, CVE-2014-2825, CVE-2014-4055, and CVE-2014-4067. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2014-4050 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Product(s): Microsoft Internet Explorer 10 Microsoft Internet Explorer 11 Definition Synopsis IE 10 + vulnerable os and file version Microsoft Internet Explorer 10 is installed AND Win 7/R2 Win 8/ 2k12 Microsoft Windows 7 (32-bit) is installed OR Microsoft Windows 7 x64 Edition is installed OR Microsoft Windows Server 2008 R2 x64 Edition is installed OR Microsoft Windows 8 (x86) is installed OR Microsoft Windows 8 (x64) is installed OR Microsoft Windows Server 2012 (64-bit) is installed AND Check for vulnerable versions Check if the version of mshtml.dll is less than 10.0.9200.17054 OR Check for LDR Check for mshtml.dll version greater than or equal to 10.0.9200.21000 AND Check if the version of mshtml.dll is less than 10.0.9200.21173 OR IE 11 + vulnerable os and file version Microsoft Internet Explorer 11 is installed AND Win 7 / 2k8 R2 Microsoft Windows 7 (32-bit) is installed OR Microsoft Windows 7 x64 Edition is installed OR Microsoft Windows Server 2008 R2 x64 Edition is installed OR Microsoft Windows 8.1 (x86) is installed OR Microsoft Windows 8.1 (x64) is installed OR Microsoft Windows Server 2012 R2 is installed AND Check if the version of mshtml.dll is less than 11.0.9600.17239
BACK