oval:org.mitre.oval:def:98

Definition Id: oval:org.mitre.oval:def:98

Oval ID:	oval:org.mitre.oval:def:98
Title:	Gopher Client Buffer Overflow
Description:	Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, or ISA Server 2000 allows remote attackers to execute arbitrary code via a gopher:// URL that redirects the user to a real or simulated gopher server that sends a long response.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2002-0371	Version:	3
Platform(s):	Microsoft Windows 2000	Product(s):	Microsoft Internet Explorer
Definition Synopsis:
Software section File %windir%\system32\mshtml.dll version is less than 6.0.2719.2200 AND NOT the patch q323759 is installed (Installed Components key) AND NOT the patch q328970 is installed (Installed Components key) AND NOT the patch q324929 is installed (Installed Components key) AND NOT the patch q810847 is installed (Installed Components key) AND NOT the patch q813489 is installed (Installed Components key) AND NOT the patch q818529 is installed (Installed Components key) AND NOT the patch q822925 is installed (Installed Components key) AND NOT the patch q828750 is installed (Installed Components key) AND NOT the patch q824145 is installed (Installed Components key) AND Internet Explorer 6 is installed AND Configuration section Gopher Enabled