Intrusion Prevention



This indicates an attack attempt against a Memory Corruption vulnerability in a library (ole32.dll) used by Windows to parse OLE document summary information.
The vulnerability is caused because the application fails to proper handle certain data. A remote attack can use a specially crafted Office document to trigger the vulnerability in Microsoft Windows Explorer.

Affected Products

Software that is linked to the ole32.dll versions that reside on Microsoft Windows 2000 SP4 FR and XP SP2 FR platforms are vulnerable; other versions might also be affected.


System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

We are not aware of any official supplied fix for this issue.