New Microsoft Access exploit in wild: Panda

By

PandaLabs researchers said they have discovered a public exploit taking advantage of a new vulnerability in Microsoft Access Database.

New Microsoft Access exploit in wild: Panda
Experts believe the new flaw resides in the Jet Engine, the same place where McAfee researchers in December discovered a similar bug. The Jet Engine is a database manager upon which programs, such as MS Access, are built.

In the December case, bogus Microsoft Access Database (MDB) files were attempting to take advantage of a stack-based buffer overflow vulnerability that occurs when MS Access processes specially crafted database files.

Microsoft considers MDB files, which permit embedded script, unsafe and has said that standard programs such as Internet Explorer and Outlook already block them.

A Microsoft spokesman could not immediately be reached for comment.

See original article on scmagazineus.com
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers

Victoria's Secret pulls down website amid security incident

Victoria's Secret pulls down website amid security incident

China blamed after cyberattack hits Czech Republic

China blamed after cyberattack hits Czech Republic

Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames

Log In

  |  Forgot your password?