CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-26168
https://notcve.org/view.php?id=CVE-2020-26168
09 Nov 2020 — The LDAP authentication method in LdapLoginModule in Hazelcast IMDG Enterprise 4.x before 4.0.3, and Jet Enterprise 4.x through 4.2, doesn't verify properly the password in some system-user-dn scenarios. As a result, users (clients/members) can be authenticated even if they provide invalid passwords. El método de autenticación LDAP en LdapLoginModule en Hazelcast IMDG Enterprise versiones 4.x anteriores a 4.0.3, y Jet Enterprise versiones 4.x anteriores a 4.2, no comprueba apropiadamente la contraseña en al... • https://docs.hazelcast.org/docs/ern/index.html#4-0-3 • CWE-287: Improper Authentication •
CVSS: 9.3EPSS: 69%CPEs: 6EXPL: 1CVE-2007-6026 – Microsoft Jet Engine - '.MDB' File Parsing Stack Overflow
https://notcve.org/view.php?id=CVE-2007-6026
20 Nov 2007 — Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944. Un desbordamiento del búfer en la región stack de la memoria en Microsoft msjet40.dll versión 4.0.8618.0 (también se conoce como Microsoft Jet Engine), como es ... • https://www.exploit-db.com/exploits/4625 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 41%CPEs: 1EXPL: 3CVE-2005-0944 – Microsoft Jet Database - 'msjet40.dll' Code Execution (Reverse Shell)
https://notcve.org/view.php?id=CVE-2005-0944
03 Apr 2005 — Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll) 4.00.8618.0, related to insufficient data validation, allows remote attackers to execute arbitrary code via a crafted mdb file. • https://www.exploit-db.com/exploits/951 •