Oval Definition:oval:org.mitre.oval:def:901
Revision Date:2005-04-13Version:43
Title:Server 2003 COM Structured Storage Vulnerability
Description:Windows 2000, XP, and Server 2003 does not properly "validate the use of memory regions" for COM structured storage files, which allows attackers to execute arbitrary code, aka the "COM Structured Storage Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-0047
Platform(s):Microsoft Windows Server 2003
Product(s):COM Internet Services
Definition Synopsis
  • the version of ole32.dll is less than 5.2.3790.250
  • AND NOT the patch KB873333 is installed
  • AND Windows Server 2003 32-bit OR 64-bit OR Windows XP 64-bit Version 2003 is installed
  • Windows Server 2003 or Windows XP 64-Bit Edition Version 2003
  • Windows Server 2003 is installed
  • OR Windows XP 64-bit
  • Windows XP is installed
  • AND a version of Windows for the ia64 architecture is installed
  • OR Microsoft Windows Server 2003 64-Bit Edition
  • Windows Server 2003 is installed
  • AND a version of Windows for the ia64 architecture is installed
    • BACK