Download
| Alert*
|
oval:org.mitre.oval:def:6271
The DHTML Editing Component ActiveX control in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly format HTML markup, which allows remote attackers to execute arbitrary code via a crafted web site that triggers "system state" corruption, aka "DHTML Editing Component Ac ... oval:org.secpod.oval:def:2291 The host is missing a critical security update according to Microsoft security bulletin, MS09-046. The update is required to fix remote code execution vulnerability. A flaw is present in the DHTML Editing Component ActiveX control , which fails to handle a specially crafted Web page. Successful expl ... |
