The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote malicious users to execute arbitrary code, aka the "Input Validation Vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft exchange server 5.0 |
||
microsoft windows xp |
||
microsoft windows 2003 server web |
||
microsoft windows 2003 server enterprise |
||
microsoft windows 2003 server enterprise 64-bit |
||
microsoft windows 2000 |
||
microsoft windows 98se |
||
microsoft windows 2003 server r2 |
||
microsoft windows me |
||
microsoft windows 2003 server standard |
||
microsoft windows 98 |