Oval Definition:
oval:org.mitre.oval:def:769
Revision Date
:
2011-05-16
Version
:
45
Title
:
Server 2003,SP1 Color Management Module Buffer Overflow
Description
:
Buffer overflow in the Microsoft Color Management Module for Windows allows remote attackers to execute arbitrary code via an image with crafted ICC profile format tags.
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2005-1219
Platform(s)
:
Microsoft Windows Server 2003
Product(s)
:
Microsoft Color Management Module
Definition Synopsis
Windows Server 2003 with Service Pack 1
Windows Server 2003 is installed
AND
Win2K/XP/2003/Vista service pack 1 is installed
AND
the version of mscms.dll is less than 5.2.3790.2476
AND
NOT
the patch KB901214 is installed
BACK