oval:org.mitre.oval:def:1632

Definition Id: oval:org.mitre.oval:def:1632

Oval ID:	oval:org.mitre.oval:def:1632
Title:	IE6 Multiple Event Handler Memory Corruption (Server 2003)
Description:	Buffer overflow in mshtml.dll in Microsoft Internet Explorer 6.0.2900.2180, and probably other versions, allows remote attackers to execute arbitrary code via an HTML tag with a large number of script action handlers such as onload and onmouseover, as demonstrated using onclick, aka the "Multiple Event Handler Memory Corruption Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-1245	Version:	5
Platform(s):	Microsoft Windows Server 2003	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
Windows Server 2003 is installed AND NOT Win2K/XP/2003 is patched AND the version of mshtml.dll is less than 6.0.3790.507