Oval Definition:	oval:org.mitre.oval:def:441
Revision Date: 2006-10-16 Version: 43 Title: MHTML Parsing Vulnerability Description: Buffer overflow in INETCOMM.DLL, as used in Microsoft Internet Explorer 6.0 through 6.0 SP2, Windows Explorer, Outlook Express 6, and possibly other programs, allows remote user-assisted attackers to cause a denial of service (application crash) via a long mhtml URI in the URL value in a URL file. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2006-2766 Platform(s): Microsoft Windows Server 2003 Microsoft Windows XP Product(s): Microsoft Outlook Express Definition Synopsis Microsoft Windows XP SP2 Microsoft Windows XP SP2 or later is installed AND The version of inetcomm.dll is less than 6.0.2900.2962. OR Microsoft Windows XP SP1/Server 2003 SP1 Software section Microsoft Windows XP SP1 (64-bit) is installed OR Microsoft Windows Server 2003 SP1 (x86) is installed OR Microsoft Windows Server 2003 (x86) Gold is installed AND The version of inetcomm.dll is less than 6.0.3790.2757.
BACK