Oval Definition:	oval:org.mitre.oval:def:690
Revision Date: 2014-02-24 Version: 43 Title: IE v5.5 Temporary Internet Files folders Name Reading Vulnerability Description: Internet Explorer 5.01 through 6.0 allows remote attackers to identify the path to the Temporary Internet Files folder and obtain user information such as cookies via certain uses of the OBJECT tag, which are not subjected to the proper security checks, aka "Temporary Internet Files folders Name Reading." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-1188 Platform(s): Microsoft Windows 2000 Product(s): Microsoft Internet Explorer Definition Synopsis Internet Explorer 5.5 Installed Internet Explorer 5.5 Installed OR Internet Explorer 5.5 Installed OR Internet Explorer 5.5 Installed OR Internet Explorer 5.5 Service Pack 2 is installed AND the version of mshtml.dll is less than 5.50.4922.900 AND NOT the patch q328970 is installed (Installed Components key) AND NOT the patch q324929 is installed (Installed Components key) AND NOT the patch q810847 is installed (Installed Components key) AND NOT the patch q813489 is installed (Installed Components key) AND NOT the patch q818529 is installed (Installed Components key) AND NOT the patch q822925 is installed (Installed Components key) AND NOT the patch q828750 is installed (Installed Components key) AND NOT the patch q824145 is installed (Installed Components key)
BACK