oval:org.mitre.oval:def:1944

Definition Id: oval:org.mitre.oval:def:1944

Oval ID:	oval:org.mitre.oval:def:1944
Title:	ActiveX Control Memory Corruption Vulnerability (2K/XP)
Description:	Unspecified vulnerability in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to execute arbitrary code via "unexpected data" related to "parameter validation" in the DXImageTransform.Microsoft.Light ActiveX control, which causes Internet Explorer to crash in a way that enables the code execution.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-2383	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
Win2K or XP,SP1 is installed Windows 2000 is installed OR Windows XP 32-bit SP1 is installed Windows XP 32-bit edition is installed Windows XP is installed AND 32-Bit version of Windows is installed AND Win2K/XP/2003 service pack 1 is installed AND Internet Explorer 6 Service Pack 1 is installed AND the version of mshtml.dll is less than 6.0.2800.1555