oval:org.mitre.oval:def:3220

Definition Id: oval:org.mitre.oval:def:3220

Oval ID:	oval:org.mitre.oval:def:3220
Title:	LoadImage Cursor and Icon Format Handling Vulnerability (Server 2003)
Description:	Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp, .cur, .ico or .ani file with a large image size field, which leads to a buffer overflow, aka the "Cursor and Icon Format Handling Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-1049	Version:	2
Platform(s):	Microsoft Windows Server 2003	Product(s):	Cursor and Icon Formatting
Definition Synopsis:
the version of user32.dll is less than 5.2.3790.245 AND NOT the patch kb891711 is installed AND Windows Server 2003 or Windows Server 2003 64-bit Edition is installed Windows Server 2003 is installed OR Microsoft Windows Server 2003 64-Bit Edition Windows Server 2003 is installed AND 64-Bit version of Windows is installed