Lucene search
SAINT CorporationSAINT:970F85FD8CB7D9BE22FB84BCBEF3891EHistoryNov 23, 2007 - 12:00 a.m.
Microsoft Jet Engine MDB file ColumnName buffer overflow
2007-11-2300:00:00
SAINT Corporation
www.saintcorporation.com
9
0.842 High
EPSS
Percentile
98.5%
Added: 11/23/2007
CVE: CVE-2007-6026
BID: 26468
OSVDB: 44880
Background
The Microsoft Jet Database Engine provides data access functionality for a number of applications.
Problem
A buffer overflow vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user opens an MDB file containing a large ColumnName length.
Resolution
Do not open MDB files from untrustworthy sources.
References
<http://archives.neohapsis.com/archives/fulldisclosure/2007-11/0392.html>
Limitations
Exploit works on Microsoft Access 2000 SP3 and requires a user to download and open an MDB file in Microsoft Access.
Platforms
Windows
Related
exploitdb
exploitdb
securityvulns
securityvulns
saint
saint
Microsoft Jet Engine MDB file ColumnName buffer overflow
2007-11-23 00:00:00
Microsoft Jet Engine MDB file ColumnName buffer overflow
2007-11-23 00:00:00
Microsoft Jet Engine MDB file ColumnName buffer overflow
2007-11-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Jet Engine MDB File Parsing Buffer Overflow (CVE-2007-6026)
2010-03-08 00:00:00
openvas
openvas
Microsoft Jet Database Engine Vulnerability (MS08-028)
2008-09-03 00:00:00
Windows Vulnerability in Microsoft Jet Database Engine
2008-09-03 00:00:00
cvelist
cvelist
cve
cve
prion
prion
Buffer overflow
2008-03-25 16:44:00
Stack overflow
2007-11-20 00:46:00
Code injection
2008-03-06 21:44:00
seebug
seebug
Microsoft JetๆฐๆฎๅบๅผๆMDBๆไปถ่งฃๆ่ฟ็จๆ ๆบขๅบๆผๆด(ms08-028)
2008-05-17 00:00:00
nessus
nessus
nvd
nvd
cert
cert
Microsoft Jet Engine stack buffer overflow
2008-03-22 00:00:00