Oval Definition:	oval:org.mitre.oval:def:4499
Revision Date: 2011-05-16 Version: 46 Title: OLE Component Input Validation Vulnerability (Windows XP) Description: The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote attackers to execute arbitrary code, aka the "Input Validation Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2005-0044 Platform(s): Microsoft Windows XP Product(s): unknown Definition Synopsis Windows XP SP1 OR Windows XP 64-bit SP1 is installed Windows XP 32-bit SP1 is installed Windows XP 32-bit edition is installed Windows XP is installed AND 32-Bit version of Windows is installed AND Win2K/XP/2003/Vista service pack 1 is installed OR Windows XP 64-bit with Service Pack 1 Windows XP is installed AND a version of Windows for the ia64 architecture is installed AND Win2K/XP/2003/Vista service pack 1 is installed AND the version of ole32.dll is less than 5.1.2600.1619 AND NOT the patch KB873333 is installed
BACK