Microsoft Windows XML Core Services XSLT Buffer Overrun Vulnerability

Bugtraq ID: 20338
Class: Boundary Condition Error
CVE: CVE-2006-4686
Remote: Yes
Local: No
Published: Oct 10 2006 12:00AM
Updated: Oct 22 2006 05:28AM
Credit: The vendor disclosed this issue.
Vulnerable: Microsoft XML Parser 2.6
Microsoft XML Core Services 6.0
Microsoft XML Core Services 5.0 SP1
Microsoft XML Core Services 5.0
Microsoft XML Core Services 4.0
Microsoft XML Core Services 3.0 SP7
Microsoft XML Core Services 3.0 SP5
Microsoft XML Core Services 3.0 SP4
Microsoft XML Core Services 3.0 SP3
Microsoft XML Core Services 3.0
Microsoft SQL Server 2005 SP1
Microsoft SQL Server 2000 Client 8.0 SP3
Microsoft SQL Server 2000 SP3a
Microsoft SQL Server 2000 SP3
Microsoft SQL Server 2000 SP2
Microsoft SQL Server 2000 SP1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
Microsoft SQL Server 2000
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0
Microsoft Office 2003 SP3
Microsoft Office 2003 SP2
Microsoft Office 2003 SP1
Microsoft Office 2003 0
+ Microsoft Excel 2003
+ Microsoft FrontPage 2003
+ Microsoft InfoPath 2003
+ Microsoft OneNote 2003 0
+ Microsoft Outlook 2003 0
+ Microsoft PowerPoint 2003 0
+ Microsoft Publisher 2003
HP Storage Management Appliance 2.1
+ HP Storage Management Appliance III
+ HP Storage Management Appliance II
+ HP Storage Management Appliance I
Avaya Modular Messaging (MAS) 3.0
Not Vulnerable: Microsoft XML Core Services 2.5 SP1
Microsoft XML Core Services 2.5


 

Privacy Statement
Copyright 2010, SecurityFocus