Microsoft OLE Automation SubstringData Function Integer Overflow Vulnerability

Microsoft OLE Automation SubstringData Function Integer Overflow Vulnerability

Solution:
The vendor released updates and an advisory to address this issue. Please see the references for more information.

Microsoft Windows Server 2003 Datacenter Edition SP1

Microsoft Security Update for Windows Server 2003 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=15d4d4fa-9bab -4da5-978e-f89c78c8086a

Microsoft Windows XP Media Center Edition SP2

Microsoft Security Update for Windows XP (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6e8de050-8589 -4831-ae19-075c93509485

Microsoft Windows Server 2003 Itanium SP1

Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=fc04451a-0696 -4a21-b2b6-f02d4e2c33bf&displaylang=en

Microsoft Office 2004 for Mac 0

Microsoft Microsoft Office 2004 for Mac 11.3.7 Update
http://download.microsoft.com/download/E/9/B/E9B2A7C6-438A-4CF9-BB35-9 01C01F3C996/Office2004-1137UpdateEN.dmg

Microsoft Windows Server 2003 Datacenter x64 Edition SP2

Microsoft Security Update for Windows Server 2003 x64 Edition (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6608d722-3ef8 -4085-b771-7b17bb0ba06e

Microsoft Windows XP Tablet PC Edition SP2

Microsoft Security Update for Windows XP (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6e8de050-8589 -4831-ae19-075c93509485

Microsoft Windows Server 2003 Web Edition SP2

Microsoft Security Update for Windows Server 2003 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=15d4d4fa-9bab -4da5-978e-f89c78c8086a

Microsoft Windows Server 2003 Standard Edition SP1

Microsoft Security Update for Windows Server 2003 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=15d4d4fa-9bab -4da5-978e-f89c78c8086a

Microsoft Windows Server 2003 Enterprise x64 Edition

Microsoft Security Update for Windows Server 2003 x64 Edition (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6608d722-3ef8 -4085-b771-7b17bb0ba06e

Microsoft Windows Server 2003 Datacenter Edition Itanium 0

Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=fc04451a-0696 -4a21-b2b6-f02d4e2c33bf&displaylang=en

Microsoft Windows Server 2003 Datacenter x64 Edition

Microsoft Security Update for Windows Server 2003 x64 Edition (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6608d722-3ef8 -4085-b771-7b17bb0ba06e

Microsoft Windows 2000 Advanced Server SP4

Microsoft Security Update for Windows 2000 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=5c35b6e8-732a -4451-b5d4-23ed63e6e792&displaylang=en

Microsoft Windows Server 2003 SP2

Microsoft Security Update for Windows Server 2003 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=15d4d4fa-9bab -4da5-978e-f89c78c8086a

Microsoft Windows Server 2003 Standard Edition SP2

Microsoft Security Update for Windows Server 2003 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=15d4d4fa-9bab -4da5-978e-f89c78c8086a

Microsoft Windows XP Home SP2

Microsoft Security Update for Windows XP (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6e8de050-8589 -4831-ae19-075c93509485

Microsoft Windows Server 2003 SP1

Microsoft Security Update for Windows Server 2003 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=15d4d4fa-9bab -4da5-978e-f89c78c8086a

Microsoft Windows 2000 Datacenter Server SP4

Microsoft Security Update for Windows 2000 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=5c35b6e8-732a -4451-b5d4-23ed63e6e792&displaylang=en

Microsoft Windows Server 2003 Itanium SP2

Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=fc04451a-0696 -4a21-b2b6-f02d4e2c33bf&displaylang=en

Microsoft Visual Basic 6.0 SP6

Microsoft Visual Basic 6 OLEAUT32.DLL Security Update
http://www.microsoft.com/downloads/details.aspx?FamilyId=E1646FB0-29D5 -4A6E-A8D2-304C4D7735B7&displaylang=en

Microsoft Windows Server 2003 Web Edition SP1

Microsoft Security Update for Windows Server 2003 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=15d4d4fa-9bab -4da5-978e-f89c78c8086a

Microsoft Windows Server 2003 Datacenter Edition Itanium SP1

Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=fc04451a-0696 -4a21-b2b6-f02d4e2c33bf&displaylang=en

Microsoft Windows XP Professional SP2

Microsoft Security Update for Windows XP (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6e8de050-8589 -4831-ae19-075c93509485

Microsoft Windows Server 2003 Standard x64 Edition

Microsoft Security Update for Windows Server 2003 x64 Edition (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=6608d722-3ef8 -4085-b771-7b17bb0ba06e

Microsoft Windows 2000 Server SP4

Microsoft Security Update for Windows 2000 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=5c35b6e8-732a -4451-b5d4-23ed63e6e792&displaylang=en

Microsoft Windows 2000 Professional SP4

Microsoft Security Update for Windows 2000 (KB921503)
http://www.microsoft.com/downloads/details.aspx?FamilyId=5c35b6e8-732a -4451-b5d4-23ed63e6e792&displaylang=en