NVD脆弱性詳細

CVE-2005-0044

概要	The OLE component in Windows 98, 2000, XP, and Server 2003, and Exchange Server 5.0 through 2003, does not properly validate the lengths of messages for certain OLE data, which allows remote attackers to execute arbitrary code, aka the "Input Validation Vulnerability."
公表日	2005年5月2日13:00
登録日	2021年1月29日17:58
最終更新日	2019年4月30日23:27

影響を受けるソフトウェアの構成

構成1		以上	以下	より上	未満
cpe:2.3:a:microsoft:exchange_server:5.0:::::::*

構成2	以上	以下	より上	未満
cpe:2.3:o:microsoft:windows_2000::::::::
cpe:2.3:o:microsoft:windows_2000::sp1::::::*
cpe:2.3:o:microsoft:windows_2000::sp2::::::*
cpe:2.3:o:microsoft:windows_2000::sp3::::::*
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:enterprise::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:::::::*
cpe:2.3:o:microsoft:windows_2003_server:r2::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:r2::datacenter_64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:standard::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:web:::::::*
cpe:2.3:o:microsoft:windows_98::gold::::::*
cpe:2.3:o:microsoft:windows_98se::::::::
cpe:2.3:o:microsoft:windows_me::::::::
cpe:2.3:o:microsoft:windows_xp:::64-bit:::::*
cpe:2.3:o:microsoft:windows_xp:::home:::::*
cpe:2.3:o:microsoft:windows_xp:::media_center:::::*
cpe:2.3:o:microsoft:windows_xp::gold:professional:::::
cpe:2.3:o:microsoft:windows_xp::sp1:64-bit:::::
cpe:2.3:o:microsoft:windows_xp::sp1:home:::::
cpe:2.3:o:microsoft:windows_xp::sp1:media_center:::::
cpe:2.3:o:microsoft:windows_xp::sp2:home:::::
cpe:2.3:o:microsoft:windows_xp::sp2:media_center:::::
cpe:2.3:o:microsoft:windows_xp::sp2:tablet_pc:::::

関連情報、対策とツール

No	URL	refsource	タグ
1	http://www.kb.cert.org/vuls/id/927889	CERT-VN	Patch US Government Resource
2	http://www.us-cert.gov/cas/techalerts/TA05-039A.html	CERT	US Government Resource
3	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-012	MS
4	https://exchange.xforce.ibmcloud.com/vulnerabilities/19109	XF
5	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1180	OVAL
6	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2917	OVAL
7	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3568	OVAL
8	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4499	OVAL

共通脆弱性一覧

構成2	以上	以下	より上	未満
cpe:2.3:o:microsoft:windows_2000::::::::
cpe:2.3:o:microsoft:windows_2000::sp1::::::*
cpe:2.3:o:microsoft:windows_2000::sp2::::::*
cpe:2.3:o:microsoft:windows_2000::sp3::::::*
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:enterprise::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:::::::*
cpe:2.3:o:microsoft:windows_2003_server:r2::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:r2::datacenter_64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:standard::64-bit:::::
cpe:2.3:o:microsoft:windows_2003_server:web:::::::*
cpe:2.3:o:microsoft:windows_98::gold::::::*
cpe:2.3:o:microsoft:windows_98se::::::::
cpe:2.3:o:microsoft:windows_me::::::::
cpe:2.3:o:microsoft:windows_xp:::64-bit:::::*
cpe:2.3:o:microsoft:windows_xp:::home:::::*
cpe:2.3:o:microsoft:windows_xp:::media_center:::::*
cpe:2.3:o:microsoft:windows_xp::gold:professional:::::
cpe:2.3:o:microsoft:windows_xp::sp1:64-bit:::::
cpe:2.3:o:microsoft:windows_xp::sp1:home:::::
cpe:2.3:o:microsoft:windows_xp::sp1:media_center:::::
cpe:2.3:o:microsoft:windows_xp::sp2:home:::::
cpe:2.3:o:microsoft:windows_xp::sp2:media_center:::::
cpe:2.3:o:microsoft:windows_xp::sp2:tablet_pc:::::