[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability
- To: "CaseArmour.net Security Administrator" <security@xxxxxxxxxxxxxx>, bugtraq@xxxxxxxxxxxxxxxxx, frankruder@xxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: Re: [Full-disclosure] Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability
- From: Juha-Matti Laurio <juha-matti.laurio@xxxxxxxx>
- Date: Sun, 18 Nov 2007 01:58:02 +0200 (EET)
There is a well-known unpatched code execution type vulnerability reported
originally in msjet40.dll version 4.00.8618.0 too.
This issue reported by HexView is known since March 2005:
http://www.securityfocus.com/bid/12960
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0944
We probably don't see a fix for this issue.
- Juha-Matti
"CaseArmour.net Security Administrator" <security@xxxxxxxxxxxxxx> kirjoitti:
> It would be useful to know if this is also an issue with msjet40.dll
> 4.0.9510.0 (Windows Server 2003 SP2 + hotfixes). I have an installer
> for Windows XP SP2 that -- seems -- to cleanly apply Windows Server 2003
> SP2's MDAC 2.82. I haven't been able to give it a serious, hard testing
> because I don't have many apps that still use MDAC.
>
> On Fri, 16 Nov 2007 19:25:29 +0800, "cocoruder" <cocoruder@xxxxxxxxx>
> said:
> >
> > (C:\Windows\System32\msjet40.dll, version is 4.0.8618.0)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/