OVAL Reference oval:org.mitre.oval:def:285

Oval Definition:

oval:org.mitre.oval:def:285

Revision Date:	2008-12-08	Version:	43
Title:	XSLT Buffer Overrun Vulnerability
Description:	Buffer overflow in the Extensible Stylesheet Language Transformations (XSLT) processing in Microsoft XML Parser 2.6 and XML Core Services 3.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted Web page.
Family:	windows	Class:	vulnerability
Status:	ACCEPTED	Reference(s):	CVE-2006-4686
Platform(s):	Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows XP	Product(s):	Microsoft XML Core Services
Definition Synopsis
AND Microsoft XML Core Services 3 is installed AND The version of Msxml3.dll is less than 8.70.1113.0. OR Microsoft XML Core Services 4 is installed AND The version of Msxml4.dll is less than 4.20.9839.0. OR Microsoft XML Core Services 5 is installed AND The version of Msxml5.dll is less than 5.10.2930.0. OR Microsoft XML Core Services 6 is installed AND The version of Msxml6.dll is less than 6.0.3888.0.