oval:org.mitre.oval:def:965

Definition Id: oval:org.mitre.oval:def:965

Oval ID:	oval:org.mitre.oval:def:965
Title:	IE6 Script Execution Vulnerability (Win2K/XP,SP1)
Description:	Microsoft Internet Explorer 5.01 through 6 does not always return the correct IOleClientSite information when dynamically creating an embedded object, which could cause Internet Explorer to run the object in the wrong security context or zone, and allow remote attackers to execute arbitrary code.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-1190	Version:	9
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
Win2K or XP,SP1 is installed Windows 2000 is installed OR Windows XP 32-bit SP1 is installed Windows XP 32-bit edition is installed Windows XP is installed AND 32-Bit version of Windows is installed AND Win2K/XP/2003 service pack 1 is installed AND Internet Explorer 6 (any patch level) is installed AND the version of mshtml.dll is less than 6.0.2800.1543