oval:org.mitre.oval:def:5793
Definition Id: oval:org.mitre.oval:def:5793 | |||
Oval ID: | oval:org.mitre.oval:def:5793 | ||
Title: | MSXML Memory Corruption Vulnerability | ||
Description: | Race condition in the msxml3 module in Microsoft XML Core Services 3.0, as used in Internet Explorer 6 and other applications, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via many nested tags in an XML document in an IFRAME, when synchronous document rendering is frequently disrupted with asynchronous events, as demonstrated using a JavaScript timer, which can trigger NULL pointer dereferences or memory corruption, aka "MSXML Memory Corruption Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2007-0099 | Version: | 1 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 | Product(s): | |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:415 | |||
Oval ID: | oval:org.mitre.oval:def:415 | ||
Title: | Microsoft XML Core Services 3 is installed | ||
Description: | Microsoft XML Core Services 3 is installed. | ||
Family: | windows | Class: | inventory |
Reference(s): | cpe:/a:microsoft:xml_core_services:3 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft XML Core Services 3 |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:5793 |