oval:org.mitre.oval:def:922

Definition Id: oval:org.mitre.oval:def:922

Oval ID:	oval:org.mitre.oval:def:922
Title:	IE Slash Characters in Type Property Vulnerability
Description:	Buffer overflow in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to execute arbitrary code via / (slash) characters in the Type property of an Object tag in a web page.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0344	Version:	4
Platform(s):	Microsoft Windows 98 Microsoft Windows ME Microsoft Windows NT Microsoft Windows 2000	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
Internet Explorer 5.5 Service Pack 2 is installed AND the version of mshtml.dll is less than 5.50.4926.2500 AND NOT the patch q818529 is installed (Installed Components key) AND NOT the patch q822925 is installed (Installed Components key) AND NOT the patch q828750 is installed (Installed Components key) AND NOT the patch q824145 is installed (Installed Components key) AND NOT the patch q832894 is installed (Installed Components key)