Oval Definition:	oval:org.mitre.oval:def:366
Revision Date: 2011-05-16 Version: 14 Title: MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 2) Description: Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2003-0822 Platform(s): Microsoft Windows 2000 Microsoft Windows NT Microsoft Windows XP Product(s): Microsoft FrontPage Server Extensions 2002 Definition Synopsis Software section Windows NT, 2000, or XP is installed Microsoft Windows NT is installed OR Windows 2000 is installed OR Windows XP is installed AND a vulnerable version of fp30reg.dll or fp5areg.dll exists the version of fp5areg.dll is less than 10.00.4205.0000 OR the version of fp30reg.dll is less than 10.00.4205.0000 AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND Configuration section FrontPage Server Extensions 2002 are enabled (NT, 2K, XP)
BACK