oval:org.mitre.oval:def:956

Definition Id: oval:org.mitre.oval:def:956

Oval ID:	oval:org.mitre.oval:def:956
Title:	IE .chm Directory Traversal Windows NT Vulnerability
Description:	Internet Explorer 5.x and 6.0 allows remote attackers to execute arbitrary programs via a modified directory traversal attack using a URL containing ".." (dot dot) sequences and a filename that ends in "::" which is treated as a .chm file even if it does not have a .chm extension. NOTE: this bug may overlap CVE-2004-0475.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-1041	Version:	6
Platform(s):	Microsoft Windows NT	Product(s):	HTML Help Facility
Definition Synopsis:
Software section Microsoft Windows NT is installed AND Internet Explorer 5.5 SP2 or Internet Explorer 6.0 SP1 is installed Internet Explorer 6 Service Pack 1 is installed AND Internet Explorer 6 for Windows Server 2003 is installed AND Internet Explorer 5.5 Service Pack 2 is installed AND the version of itss.dll is less than 5.2.3790.185 AND NOT the patch kb840315 is installed AND Configuration section NOT HTML Help is registered

Definition Id: oval:org.mitre.oval:def:36

Oval ID:	oval:org.mitre.oval:def:36
Title:	Microsoft Windows NT is installed
Description:	The operating system installed on the system is Microsoft Windows NT.
Family:	windows	Class:	inventory
Reference(s):	cpe:/o:microsoft:windows_nt	Version:	6
Platform(s):	Microsoft Windows NT	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Windows NT 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:956