Oval Definition:	oval:org.mitre.oval:def:3973
Revision Date: 2013-04-15 Version: 49 Title: HyperTerminal Session File Vulnerability (NT 4.0) Description: HyperTerminal application for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the length of a value that is saved in a session file, which allows remote attackers to execute arbitrary code via a malicious HyperTerminal session file (.ht), web site, or Telnet URL contained in an e-mail message, triggering a buffer overflow. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-0568 Platform(s): Microsoft Windows NT Product(s): HyperTerminal Definition Synopsis Software section the version of hypertrm.dll is less than 4.0.1381.7323 AND NOT the patch NT Server kb873339 is installed AND Windows NT Server 4.0 is installed Microsoft Windows NT is installed AND Windows NT server product option this is an NT Server (stand-alone) OR this is an NT Server (domain controller) AND Configuration section If key present hyperterminal will automatically open session files OR If the Hyperterminal client is registered as the default telnet client
BACK