MS07-043: Vulnerability in OLE Automation Could Allow Remote Code Execution (921503)

How to?

Support

Download

Website

Forums

Live Demo

Patch Management Software

Desktop Central helps administrators to automate patch deployment of both Microsoft and Non-Microsoft Applications from a central point.

MS07-043 Bulletin Details

Microsoft Security Bulletins

Bulletin ID:	MS07-043
Title	Vulnerability in OLE Automation Could Allow Remote Code Execution (921503)
Summary:	This critical security update resolves a privately reported vulnerability. This vulnerability could allow remote code execution if a user viewed a specially crafted Web page. The vulnerability could be exploited through attacks on Object Linking and Embedding (OLE). Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This is a critical security update for all supported editions of Windows 2000, Windows XP, Office 2004 for Mac, and Visual Basic 6. For other affected editions of Windows, this update is rated moderate.This security update addresses the vulnerability by adding a check on memory requests within OLE Automation.
Knowledgebase:	921503

List of Patches

S.No	Patch Name	Severity
1.	Windows2000-KB921503-x86-ENU.EXE	Critical
2.	WindowsServer2003-KB921503-x86-ENU.exe	Moderate
3.	WindowsServer2003-SP2-KB921503-x86-ENU.exe	Moderate
4.	WindowsXP-KB921503-x86-ENU.exe	Critical
5.	WindowsXP-KB921503-x64-ENU.exe	Critical

Patch Mgmt Features

Desktop Mgmt Features

Forums

Disclaimer: This webpage is intended to provide you information about patch announcements for certain specific software products. The information is provided "As Is" without warranty of any kind. The links provided point to pages on the vendors' websites. You can get more information by clicking the links to visit the relevant pages on the vendors' websites. Desktop Central is NOT endorsed by the vendors of the software products.