CVSS: 9.3EPSS: 6%CPEs: 2EXPL: 0CVE-2008-1200
https://notcve.org/view.php?id=CVE-2008-1200
Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbitrary code via a crafted .MDB file, possibly related to Jet Engine (msjet40.dll). NOTE: this is probably a different issue than CVE-2007-6026. Vulnerabilidad sin especificar en Microsoft Access permite a atacantes remotos asistidos por el usuario ejecutar código de su elección a través de un archivo .MDB manipulado, posiblemente relacionado con Jet Engine (msjet40.dll). NOTA: probablemente este sea un problema diferente a CVE-2007-6026. • http://pandalabs.pandasecurity.com/archive/New-MS-Access-exploit.aspx http://www.securityfocus.com/bid/28087 •
CVSS: 9.3EPSS: 82%CPEs: 6EXPL: 1CVE-2007-6026 – Microsoft Jet Engine - '.MDB' File Parsing Stack Overflow
https://notcve.org/view.php?id=CVE-2007-6026
Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944. Un desbordamiento del búfer en la región stack de la memoria en Microsoft msjet40.dll versión 4.0.8618.0 (también se conoce como Microsoft Jet Engine), como es usado por Access 2003 en Microsoft Office 2003 SP3, permite a atacantes asistidos por el usuario ejecutar código arbitrario por medio de un archivo de base de datos de archivos MDB que contiene una estructura de columnas con un conteo de columnas modificado. NOTA: este podría ser el mismo problema que CVE-2005-0944. • https://www.exploit-db.com/exploits/4625 http://dvlabs.tippingpoint.com/advisory/TPTI-08-04 http://lists.grok.org.uk/pipermail/full-disclosure/2007-November/058531.html http://marc.info/?l=bugtraq&m=121129490723574&w=2 http://ruder.cdut.net/blogview.asp?logID=227 http://securityreason.com/securityalert/3376 http://www.kb.cert.org/vuls/id/936529 http://www.securityfocus.com/archive/1/483797/100/0/threaded http://www.securityfocus.com/archive/1/483858/100/100/threaded • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 15%CPEs: 1EXPL: 3CVE-2005-0944 – Microsoft Jet Database - 'msjet40.dll' Code Execution (Reverse Shell)
https://notcve.org/view.php?id=CVE-2005-0944
Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll) 4.00.8618.0, related to insufficient data validation, allows remote attackers to execute arbitrary code via a crafted mdb file. • https://www.exploit-db.com/exploits/951 https://www.exploit-db.com/exploits/927 https://www.exploit-db.com/exploits/929 http://blogs.securiteam.com/?p=535 http://marc.info/?l=bugtraq&m=111231465920199&w=2 http://www.hexview.com/docs/20050331-1.txt http://www.kb.cert.org/vuls/id/176380 http://www.securityfocus.com/archive/1/442446/100/100/threaded http://www.securityfocus.com/archive/1/442610/100/100/threaded •
CVSS: 7.5EPSS: 10%CPEs: 1EXPL: 0CVE-2004-0197
https://notcve.org/view.php?id=CVE-2004-0197
Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query. • http://www.kb.cert.org/vuls/id/740716 http://www.securityfocus.com/bid/10112 http://www.us-cert.gov/cas/techalerts/TA04-104A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-014 https://exchange.xforce.ibmcloud.com/vulnerabilities/15703 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A968 •
CVSS: 7.5EPSS: 18%CPEs: 9EXPL: 1CVE-2002-0859 – Microsoft SQL Server 2000 / Microsoft Jet 4.0 Engine - Unicode Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2002-0859
Buffer overflow in the OpenDataSource function of the Jet engine on Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code. Desbordamiento de búfer en la función OpenDataSource del motor Jet en Microsoft SQL Server 2000 permite a atacantes remotos ejecutar código arbitrario. • https://www.exploit-db.com/exploits/21569 http://marc.info/?l=bugtraq&m=102450188620081&w=2 http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ282010 http://www.iss.net/security_center/static/9375.php http://www.nextgenss.com/advisories/mssql-ods.txt http://www.securityfocus.com/bid/5057 •