• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Focus On: Vista
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns

• info
• discussion
• exploit
• solution
• references

Microsoft Jet DataBase Engine MDB File Parsing Remote Buffer Overflow Vulnerability

To exploit this issue, an attacker must entice a user into opening a malicious file.

UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product.

There are reports that this vulnerability is being actively exploited in the wild. These attacks are using malicious Word files to load Jet database files.

The following exploit is available. Symantec has not verified this exploit.

• /data/vulnerabilities/exploits/26468.mdb