oval:org.mitre.oval:def:3179

Definition Id: oval:org.mitre.oval:def:3179

Oval ID:	oval:org.mitre.oval:def:3179
Title:	Windows NT HtmlHelp Heap Overflow
Description:	Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary commands via a .CHM file with a large length field, a different vulnerability than CVE-2003-1041.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2004-0201	Version:	6
Platform(s):	Microsoft Windows NT	Product(s):	HTML Help Facility
Definition Synopsis:
Software section Microsoft Windows NT is installed AND Internet Explorer 5.5 SP2 or Internet Explorer 6.0 SP1 is installed Internet Explorer 6 Service Pack 1 is installed AND Internet Explorer 6 for Windows Server 2003 is installed AND Internet Explorer 5.5 Service Pack 2 is installed AND the version of itss.dll is less than 5.2.3790.185 AND NOT the patch kb840315 is installed AND Configuration section NOT HTML Help is registered

Definition Id: oval:org.mitre.oval:def:36

Oval ID:	oval:org.mitre.oval:def:36
Title:	Microsoft Windows NT is installed
Description:	The operating system installed on the system is Microsoft Windows NT.
Family:	windows	Class:	inventory
Reference(s):	cpe:/o:microsoft:windows_nt	Version:	6
Platform(s):	Microsoft Windows NT	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Windows NT 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:3179