Oval Definition:	oval:org.mitre.oval:def:5307
Revision Date: 2011-05-16 Version: 47 Title: Windows XP Long Share Names Vulnerability Description: Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote malicious servers to cause a denial of service (application crash) and possibly execute arbitrary code via long share names, as demonstrated using Samba. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-0214 Platform(s): Microsoft Windows XP Product(s): Windows Shell Definition Synopsis Windows XP is installed AND 32-Bit version of Windows is installed AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND a vulnerable version of shell32.dll exists no service pack is installed and a vulnerable version of shell32.dll exists NOT Win2K/XP/2003 is patched AND the version of shell32.dll is less than 6.0.2750.166 OR service pack 1 is installed and a vulnerable version of shell32.dll exists Win2K/XP/2003/Vista service pack 1 is installed AND the version of shell32.dll is less than 6.0.2800.1580 AND NOT the patch q841356 is installed (Hotfix key)
BACK