oval:org.mitre.oval:def:1710

Definition Id: oval:org.mitre.oval:def:1710

Oval ID:	oval:org.mitre.oval:def:1710
Title:	IE6 Cross-Domain Information Disclosure Vulnerability (Server 2003,SP1)
Description:	Microsoft Internet Explorer 5.01 through 6 does not always correctly identify the domain that is associated with a browser window, which allows remote attackers to obtain sensitive cross-domain information and spoof sites by running script after the user has navigated to another site.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-1191	Version:	4
Platform(s):	Microsoft Windows Server 2003	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
Windows Server 2003 is installed AND Win2K/XP/2003 service pack 1 is installed AND the version of mshtml.dll is less than 6.0.3790.2666