Windoze again..

Well i just got a couple of emails recently requesting me to comment on the vulnerability released sometime ago on Micro$oft's COM and OLE storage vulnerability.

Well many of us know of this as a infamous MS05-012 bug, but, however ... i think theyre loads of people out there who are still VULNERABLE. This is because, simple... when they tried the updates , it caused "unexpected results" *smile* on their machine, and thus having them to rollback the update.

Well there is 2 parts to this problem / vulnerability.

The first flaw exists in the way , affected Os'es and programs access memory when they process COM structured storage files, which allows attackers to gain elevated privileges. The second problem exists in OLE because of the way it handles input validation, and may be exploited by by constructing a malicious document that could potentially allow remote code execution.

Affected Products :-


Microsoft Windows 2000 Service Pack 3
Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 1
Microsoft Windows XP Service Pack 2
Microsoft Windows XP 64-Bit Edition Service Pack 1
Microsoft Windows XP 64-Bit Edition Version 2003 (Itanium)
Microsoft Windows Server 2003
Microsoft Windows Server 2003 for Itanium-based Systems
Microsoft Exchange 2000 Server Service Pack 3
Microsoft Exchange Server 2003
Microsoft Exchange Server 2003 Service Pack 1
Microsoft Exchange Server 5.0 Service Pack 2
Microsoft Exchange Server 5.5 Service Pack 4
Microsoft Windows 98
Microsoft Windows 98 Second Edition (SE)
Microsoft Windows Millennium Edition (ME)
Microsoft Office XP Service Pack 3
Microsoft Office XP Service Pack 2
Microsoft Office XP
Microsoft Office 2003 Service Pack 1
Microsoft Office 2003

PoC Code available here .


Solution ?

Well you could try to take a look at this.. in my definitions, i dont consider this as a solution *smile*

Microsoft Technet Solution