New Search

OLE Component Input Validation Vulnerability (Windows 2000)

oval:org.mitre.oval:def:2917

The OLE component in Windows 98 2000 XP and Server 2003 and Exchange Server 5.0 through 2003 does not properly validate the lengths of messages for certain OLE data which allows remote attackers to execute arbitrary code aka the "Input Validation Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2005-0044
Product(s):
  • Windows Media Player 9