Oval Definition:oval:org.mitre.oval:def:906
Revision Date:2011-05-16Version:17
Title:Microsoft Agent Security Prompt Spoofing Vulnerability (Server 2003)
Description:Microsoft Agent allows remote attackers to spoof trusted Internet content and execute arbitrary code by disguising security prompts on a malicious Web page.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-1214
Platform(s):Microsoft Windows Server 2003
Product(s):Microsoft Agent
Definition Synopsis
  • Software section
  • Windows Server 2003 is installed
  • AND a vulnerable version of agentdpv exists
  • a vulnerable version of agentdpv exists
  • 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed
  • 32-Bit version of Windows is installed
  • OR a version of Windows for the ia64 architecture is installed
  • AND NOT Win2K/XP/2003 is patched
  • AND the version of agentdpv.dll is less than 2.0.0.3423
  • OR a vulnerable version of agentdpv exists
  • 32-bit version of Windows or 64-bit (itanium architecture) version of Windows is installed
  • 32-Bit version of Windows is installed
  • OR a version of Windows for the ia64 architecture is installed
  • AND Win2K/XP/2003/Vista service pack 1 is installed
  • AND the version of agentdpv.dll is less than 5.2.3790.1241
  • OR a vulnerable version of agentdpv exists for Windows Gold 64-bit (x64)
  • 64-Bit (x64 architecture) version of Windows is installed
  • AND NOT Win2K/XP/2003 is patched
  • AND the version of agentdpv.dll is less than 5.2.3790.1241
  • AND NOT the patch kb890046 is installed
  • AND Configuration section
  • ActiveX controls and active scripting are enabled
  • current user settings are being used and ActiveX controls and active scripting are enabled
  • NOT use machine settings rather than individual user settings
  • AND ActiveX controls are enabled for the current user
  • AND active scripting is enabled for the current user
  • OR local machine settings are being used and ActiveX controls and active scripting are enabled
  • use machine settings rather than individual user settings
  • AND ActiveX controls are enabled for the local machine
  • AND active scripting is enabled for the local machine
    • BACK