USCERT: Active Exploitation Using Malicious Microsoft Access Databases

By Roger on December 11, 2007 12:30 PM | | Comments (0) | TrackBacks (0)

http://www.us-cert.gov/current/index.html#microsoft_access_database_file_attachment

US-CERT is aware of a stack buffer overflow vulnerability in the way that Microsoft Access handles specially crafted database files. Opening a specially crafted Microsoft Access Database (e.g., .MDB) can cause arbitrary code execution without requiring any additional user interaction. Microsoft Access files are considered to be high-risk, so it may be possible to execute arbitrary code without using a vulnerability in Microsoft Access.

US-CERT is aware of active exploitation using malicious Microsoft Access databases.

To help protect against this type of attack, US-CERT recommends the following:

Do not open attachments from unsolicited email messages
Block high-risk file attachments at email gateways

Categories

Antivirus , General

Tags

0 TrackBacks

Listed below are links to blogs that reference this entry: USCERT: Active Exploitation Using Malicious Microsoft Access Databases.

TrackBack URL for this entry: http://www.infosecblog.org/mt-tb20071121.pl/635

Leave a comment

Powered by Ajax Comments

About this Entry

This page contains a single entry by Roger published on December 11, 2007 12:30 PM.

"I've got issues" was the previous entry in this blog.

How to ask a question the smart way is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search