Oval Definition:oval:org.mitre.oval:def:3586
Revision Date:2014-02-24Version:45
Title:IE6.0,SP1 Security Zone Restriction Bypass Vulnerability
Description:Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-0054
Platform(s):Microsoft Windows 2000
Microsoft Windows XP
Product(s):Microsoft Internet Explorer
Definition Synopsis
  • Software section
  • Internet Explorer 6 Service Pack 1 is installed
  • AND a vulnerable version of mshtml.dll exisits GDR/QFE
  • machine has followed the GDR update path and mshtml.dll is less than 6.0.2800.1491
  • OR machine has followed the QFE update path and mshtml.dll is less than 6.0.2800.1492
  • AND Configuration section
  • ActiveX controls and active scripting are enabled
  • current user settings are being used and ActiveX controls and active scripting are enabled
  • NOT use machine settings rather than individual user settings
  • AND ActiveX controls are enabled for the current user
  • AND active scripting is enabled for the current user
  • OR local machine settings are being used and ActiveX controls and active scripting are enabled
  • use machine settings rather than individual user settings
  • AND ActiveX controls are enabled for the local machine
  • AND active scripting is enabled for the local machine
    • BACK