[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities

To: "bugtraq-securityfocus.com" <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
From: Steve Shockley <steve.shockley@xxxxxxxxxxxx>
Date: Sun, 03 Apr 2005 13:13:14 -0400

Denis Jedig wrote:

Newer Access versions throw a security warning if the VBA code is not signed and let the user disable VBA execution. The issue highlighted by hexview is able to circumvent this security-related feature.

Access 2003 on WinXP SP2 throws a security warning when I open any Access file, even one without VBA. I believe that's new with WinXP SP2.

Follow-Ups:
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
  - From: Son SonOfLilit

References:
- [HV-HIGH] Microsoft Jet DB engine vulnerabilities
  - From: vuln
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
  - From: Thor (Hammer of God)
- Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
  - From: Denis Jedig

Prev by Date: Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
Next by Date: [SECURITYREASON.COM] PhpNuke 7.6=>x Multiple vulnerabilities cXIb8O3.12
Previous by thread: Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
Next by thread: Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
Index(es):
- Date
- Thread