oval:org.mitre.oval:def:5793

Definition Id: oval:org.mitre.oval:def:5793

Oval ID:	oval:org.mitre.oval:def:5793
Title:	MSXML Memory Corruption Vulnerability
Description:	Race condition in the msxml3 module in Microsoft XML Core Services 3.0, as used in Internet Explorer 6 and other applications, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via many nested tags in an XML document in an IFRAME, when synchronous document rendering is frequently disrupted with asynchronous events, as demonstrated using a JavaScript timer, which can trigger NULL pointer dereferences or memory corruption, aka "MSXML Memory Corruption Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2007-0099	Version:	1
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Microsoft XML Core Services 3 is installed AND msxml3.dll version is less than 8.100.1048.0

Definition Id: oval:org.mitre.oval:def:415

Oval ID:	oval:org.mitre.oval:def:415
Title:	Microsoft XML Core Services 3 is installed
Description:	Microsoft XML Core Services 3 is installed.
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:microsoft:xml_core_services:3	Version:	3
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft XML Core Services 3
Definition Synopsis:
Microsoft XML Core Services 3 is installed.
Referenced By:
oval:org.mitre.oval:def:5793