New Search

OLE Component Input Validation Vulnerability (32-bit XPSP2)

oval:org.mitre.oval:def:1180

The OLE component in Windows 98 2000 XP and Server 2003 and Exchange Server 5.0 through 2003 does not properly validate the lengths of messages for certain OLE data which allows remote attackers to execute arbitrary code aka the "Input Validation Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2005-0044
Product(s):
  • Windows Media Player 9