Oval Definition:	oval:org.mitre.oval:def:3568
Revision Date: 2005-03-29 Version: 43 Title: OLE Component Input Validation Vulnerability (Server / XP 2003) Description: The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote attackers to execute arbitrary code, aka the "Input Validation Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-0044 Platform(s): Microsoft Windows Server 2003 Product(s): OLE Definition Synopsis the version of ole32.dll is less than 5.2.3790.250 AND NOT the patch KB873333 is installed AND Windows Server 2003 32-bit OR 64-bit OR Windows XP 64-bit Version 2003 is installed Windows Server 2003 or Windows XP 64-Bit Edition Version 2003 Windows Server 2003 is installed OR Windows XP 64-bit Windows XP is installed AND a version of Windows for the ia64 architecture is installed OR Microsoft Windows Server 2003 64-Bit Edition Windows Server 2003 is installed AND a version of Windows for the ia64 architecture is installed
BACK