The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote malicious users to execute arbitrary code, aka the "Input Validation Vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft exchange server 5.0 |
||
microsoft windows 98 |
||
microsoft windows 98se |
||
microsoft windows xp |
||
microsoft windows 2000 |
||
microsoft windows 2003 server enterprise |
||
microsoft windows 2003 server enterprise_64-bit |
||
microsoft windows me |
||
microsoft windows 2003 server r2 |
||
microsoft windows 2003 server standard |
||
microsoft windows 2003 server web |