Oval Definition:	oval:org.mitre.oval:def:57
Revision Date: 2014-02-24 Version: 43 Title: Improper Cross Domain Security Validation with ShowHelp Functionality Description: The showHelp() function in Microsoft Internet Explorer 5.01, 5.5, and 6.0 supports certain types of pluggable protocols that allow remote attackers to bypass the cross-domain security model and execute arbitrary code, aka "Improper Cross Domain Security Validation with ShowHelp functionality." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2003-1328 Platform(s): Microsoft Windows 2000 Product(s): Microsoft Internet Explorer Definition Synopsis the version of mshtml.dll is less than 6.0.2723.2500 AND NOT the patch q810847 is installed (Installed Components key) AND NOT the patch q813489 is installed (Installed Components key) AND NOT the patch q818529 is installed (Installed Components key) AND NOT the patch q822925 is installed (Installed Components key) AND NOT the patch q828750 is installed (Installed Components key) AND NOT the patch q824145 is installed (Installed Components key) AND Internet Explorer 6 is installed
BACK