republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsJob BoardISP NewsFAQsForumsToolsMapsAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Microsoft warns of new attack on Word
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
What I learned from Norton 360 »
« No April Fools'--Storm worm is back; don't click on links  
AuthorAll Replies


jeno

@bellsouth.net

reply to SUMware
Re: Microsoft warns of new attack on Word

Microsoft Jet DataBase Engine MDB File Parsing Remote Buffer Overflow Vulnerability

To exploit this issue, an attacker must entice a user into opening a malicious file.

*Workarounds

Microsoft has tested the following workarounds. Although these workarounds will not correct the underlying vulnerability, they help block known attack vectors. When a workaround reduces functionality, it is identified in the following section.

Restrict the Microsoft Jet Database Engine from running.

To implement the workaround, enter the following command at a command prompt:

echo y| cacls "%SystemRoot%\system32\msjet40.dll" /E /P everyone:N

*To undo the workaround, enter the following command at a command prompt:

echo y| cacls "%SystemRoot%\system32\msjet40.dll" /E /R everyone

Impact of Workaround: Any application requiring the use of the Microsoft Jet Database Engine to make data access calls will not function.
Microsoft Security Advisory (950627)
Vulnerability in Microsoft Jet Database Engine (Jet) Could Allow Remote Code Execution
Published: March 21, 2008:
»www.microsoft.com/technet/securi···627.mspx

The following exploit caused my SAVCE(updated today) to quarantine "Trogen.Horse"...

UPDATE: Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product.

The following exploit is available. Symantec has not verified this exploit.

* /data/vulnerabilities/exploits/26468.mdb
»www.securityfocus.com/bid/26468/exploit
to forum · permalink · 2008-03-22 17:07:10 · Reply to this


jeno

@bellsouth.net		 Correction:
The following exploit caused my SAVCE(updated today) to quarantine"Trojan Horse"
to forum · permalink · 2008-03-22 18:43:59 · Reply to this
-
Forums » Up and Running » Security » SecurityWhat I learned from Norton 360 »
« No April Fools'--Storm worm is back; don't click on links  

Thursday, 21-Aug 04:56:58 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 9 years online! © 1999-2008 dslreports.com.
page compression OFF
Most commented news this week
· [99] Was FiOS a Good Idea?
· [77] Landscaping, Courtesy of AT&T?
· [76] ISPs Whine About Network Neutrality 'Paranoia'
· [68] FCC Finally Issues Comcast Throttling Order
· [56] Google Launches White Space Broadband Website
· [56] Craig Moffett: Network Upgrades Are For Ninnies
· [52] Qwest, Unions Strike Deal
· [52] Did Apple iPhone Fix Make Problems Worse?
· [49] Olympics Didn't Cause The Exaflood
· [49] AT&T Cooking Up New VoIP Product
Most people now reading
· Criss Angel revealed. [56k lookout! (broadband heavy)]
· [Speed] Comcast to throttle individual users; all protocols [Comcast HSI]
· Neighbor Yanks a Power Line & Voltage Overloads the Block [Home Repair & Improvement]
· How do you file things on your computer? [General Questions]
· Ebook websites, fraud charges, Devbill/DigitalAge/Pluto [Spam, Scam and Phishbusters]
· HP Broadcom Wireless Driver Updates [Wireless Networking]
· beta.hsd1.ga.comcast.net [Comcast HSI]
· Tomato/MLPPP released (evade throttle or bond two DSL lines) [TekSavvy]
· [iPhone] 2.0.2 firmware is out, Please post outcome [All things Macintosh]
· [DD-WRT] Shields Up scan shows open port [Linksys]