Oval Definition:oval:org.mitre.oval:def:98
Revision Date:2014-02-24Version:43
Title:Gopher Client Buffer Overflow
Description:Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2002-0371
Platform(s):Microsoft Windows 2000
Product(s):Microsoft Internet Explorer
Definition Synopsis
  • Software section
  • File %windir%\system32\mshtml.dll version is less than 6.0.2719.2200
  • AND NOT the patch q323759 is installed (Installed Components key)
  • AND NOT the patch q328970 is installed (Installed Components key)
  • AND NOT the patch q324929 is installed (Installed Components key)
  • AND NOT the patch q810847 is installed (Installed Components key)
  • AND NOT the patch q813489 is installed (Installed Components key)
  • AND NOT the patch q818529 is installed (Installed Components key)
  • AND NOT the patch q822925 is installed (Installed Components key)
  • AND NOT the patch q828750 is installed (Installed Components key)
  • AND NOT the patch q824145 is installed (Installed Components key)
  • AND Internet Explorer 6 is installed
  • AND Configuration section
  • Gopher Enabled
    • BACK