Executive Summary
| Summary | |
|---|---|
| Title | Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution (950749) |
| Informations | |||
|---|---|---|---|
| Name | MS08-028 | First vendor Publication | 2008-05-13 |
| Vendor | Microsoft | Last vendor Modification | 2008-05-13 |
| Severity (Vendor) | Critical | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9.3 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| This security update resolves a security vulnerability in the Microsoft Jet Database Engine (Jet) in Windows. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:5578 | |||
| Oval ID: | oval:org.mitre.oval:def:5578 | ||
| Title: | Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability | ||
| Description: | Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2007-6026 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 | Product(s): | Microsoft Jet 4.0 Database Engine |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 1 | |
| Application | 1 | |
| Application | 6 | |
| Os | 1 | |
| Os | 1 | |
| Os | 1 | |
| Os | 1 |
SAINT Exploits
| Description | Link |
|---|---|
| Microsoft Jet Engine MDB file ColumnName buffer overflow | More info here |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2008-09-03 | Name : Windows Vulnerability in Microsoft Jet Database Engine File : nvt/win_CVE-2007-6026.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 44880 | Microsoft Windows msjet40.dll MDB File Handling Overflow A remote overflow exists in Microsoft Jet (msjet40.dll). The DLL fails to bounds check user-supplied data resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
| 43464 | Microsoft Jet Database Engine Word File Handling Unspecified Code Execution |
Information Assurance Vulnerability Management (IAVM)
| Date | Description |
|---|---|
| 2008-05-15 | IAVM : 2008-A-0030 - Microsoft Jet Database Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0016013 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Microsoft Office Access MSISAM file magic detected RuleID : 23718 - Revision : 7 - Type : FILE-IDENTIFY |
| 2014-01-10 | Microsoft Office Access TJDB file magic detected RuleID : 23717 - Revision : 7 - Type : FILE-IDENTIFY |
| 2014-01-10 | Microsoft Office Access JSDB file magic detected RuleID : 23716 - Revision : 7 - Type : FILE-IDENTIFY |
| 2014-01-10 | Microsoft Office Access file magic detected RuleID : 23715 - Revision : 8 - Type : FILE-IDENTIFY |
| 2015-05-28 | Microsoft Access hciR obfuscated download attempt RuleID : 13634 - Revision : 5 - Type : WEB-CLIENT |
| 2014-01-10 | Microsoft Office Access MSISAM file magic detected RuleID : 13633 - Revision : 18 - Type : FILE-IDENTIFY |
| 2014-01-10 | Microsoft Office Access TJDB file magic detected RuleID : 13630 - Revision : 18 - Type : FILE-IDENTIFY |
| 2014-01-10 | Microsoft Office Access JSDB file magic detected RuleID : 13629 - Revision : 18 - Type : FILE-IDENTIFY |
| 2014-01-10 | Microsoft Office Access file magic detected RuleID : 13626 - Revision : 22 - Type : FILE-IDENTIFY |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2008-05-13 | Name : Arbitrary code can be executed on the remote host through the database engine. File : smb_nt_ms08-028.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2015-05-28 21:26:34 |
|
| 2014-02-17 11:45:58 |
|
| 2014-01-19 21:30:12 |
|
| 2013-11-11 12:41:08 |
|
| 2013-05-11 00:49:19 |
|
