oval:org.mitre.oval:def:1114

Definition Id: oval:org.mitre.oval:def:1114

Oval ID:	oval:org.mitre.oval:def:1114
Title:	IE AbusiveParent Vulnerability (32-bit Server 2003)
Description:	The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject arbitrary web script into other domains by setting a name for a window, opening a child page whose target is the window with the given name, then injecting the script from the parent into the child using execScript, as demonstrated by "AbusiveParent" in Internet Explorer 6.0.2900.2180.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-1319	Version:	5
Platform(s):	Microsoft Windows Server 2003	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
Microsoft Windows Server 2003 32-Bit Edition Windows Server 2003 is installed AND 32-Bit version of Windows is installed AND the version of dhtmled.ocx is less than 6.1.0.9231 AND NOT the patch kb891781 is installed (Hotfix key)