Comments on: Microsoft Jet Database Engine Attacked Through Word http://blogs.mcafee.com/mcafee-labs/microsoft-jet-database-engine-attacked-through-word Sat, 12 May 2012 04:55:36 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Petievich http://blogs.mcafee.com/mcafee-labs/microsoft-jet-database-engine-attacked-through-word/comment-page-1#comment-15744 Petievich Mon, 07 Apr 2008 16:24:51 +0000 http://blogs.mcafee.com/2008/03/21/microsoft-jet-database-engine-attacked-through-word/#comment-15744 I have noticed rumbling about something called "Postcard". Is this a present threat?........George I have noticed rumbling about something called “Postcard”. Is this a present threat?……..George

]]> By: Craig Schmugar http://blogs.mcafee.com/mcafee-labs/microsoft-jet-database-engine-attacked-through-word/comment-page-1#comment-15743 Craig Schmugar Wed, 26 Mar 2008 18:10:40 +0000 http://blogs.mcafee.com/2008/03/21/microsoft-jet-database-engine-attacked-through-word/#comment-15743 Vincent: Yes, that was a horrible typo. Fixed. Duffman: I could have stated it more clearly, but the fact is that Microsoft has treated Access related exploits (such as MS Jet) very different from say Word exploits. And their latest Security Advisory covers an MS Jet DB vulnerability (not Word). So while they have yet to change their position on MDB files in terms of considering them "safe", they have changed their process/response for at least this case (so far). Vincent: Yes, that was a horrible typo. Fixed.

Duffman: I could have stated it more clearly, but the fact is that Microsoft has treated Access related exploits (such as MS Jet) very different from say Word exploits. And their latest Security Advisory covers an MS Jet DB vulnerability (not Word). So while they have yet to change their position on MDB files in terms of considering them “safe”, they have changed their process/response for at least this case (so far).

]]> By: Duffman http://blogs.mcafee.com/mcafee-labs/microsoft-jet-database-engine-attacked-through-word/comment-page-1#comment-15742 Duffman Tue, 25 Mar 2008 12:02:20 +0000 http://blogs.mcafee.com/2008/03/21/microsoft-jet-database-engine-attacked-through-word/#comment-15742 This sentance: "and therefore Microsoft stuck to their “MDB files are unsafe” story. Well that’s changed." really needs to be rewritten, as is it looks as if Microsoft claims of MDB files are unsafe has changed (IE MDB files are now safe). When you are really saying is that databases are now attacked by means other then MDB files. It is really confusing when other websites quote only a part of the paragraph. This sentance: “and therefore Microsoft stuck to their “MDB files are unsafe” story. Well that’s changed.” really needs to be rewritten, as is it looks as if Microsoft claims of MDB files are unsafe has changed (IE MDB files are now safe). When you are really saying is that databases are now attacked by means other then MDB files. It is really confusing when other websites quote only a part of the paragraph.

]]> By: Vincent Leong http://blogs.mcafee.com/mcafee-labs/microsoft-jet-database-engine-attacked-through-word/comment-page-1#comment-15741 Vincent Leong Tue, 25 Mar 2008 09:54:40 +0000 http://blogs.mcafee.com/2008/03/21/microsoft-jet-database-engine-attacked-through-word/#comment-15741 There might be a typo: "Microsoft states that Msjet40.dll versions lower than 4.0.9505.0 are not vulnerable." From Microsoft Security Advisory 950627: "If the version of Msjet40.dll is lower than 4.0.9505.0, you have a vulnerable version of the Microsoft Jet Database Engine." You meant they *are* vulnerable? Cheers, Vincent There might be a typo: “Microsoft states that Msjet40.dll versions lower than 4.0.9505.0 are not vulnerable.”

From Microsoft Security Advisory 950627: “If the version of Msjet40.dll is lower than 4.0.9505.0, you have a vulnerable version of the Microsoft Jet Database Engine.”

You meant they *are* vulnerable?

Cheers, Vincent

]]> By: luc http://blogs.mcafee.com/mcafee-labs/microsoft-jet-database-engine-attacked-through-word/comment-page-1#comment-15740 luc Mon, 24 Mar 2008 16:19:38 +0000 http://blogs.mcafee.com/2008/03/21/microsoft-jet-database-engine-attacked-through-word/#comment-15740 if Vista is not affected, this does NOT mean it has been silenty fixed, but this means the code is different or more robust, and so Vista version is not affected if Vista is not affected, this does NOT mean it has been silenty fixed, but this means the code is different or more robust, and so Vista version is not affected

]]> By: Aa'ed Alqarta http://blogs.mcafee.com/mcafee-labs/microsoft-jet-database-engine-attacked-through-word/comment-page-1#comment-15739 Aa'ed Alqarta Sun, 23 Mar 2008 06:03:29 +0000 http://blogs.mcafee.com/2008/03/21/microsoft-jet-database-engine-attacked-through-word/#comment-15739 Who still allows ".zip" attachments in? why we keep running in the same loop ? Attackers are winning because they are 100% sure, that there are users who left the antispam filter working under the default settings. Or thinking that the running AV will protect against all threats for the next 10 years. Wake up dudes ! http://extremesecurity.blogpsot.com Who still allows “.zip” attachments in? why we keep running in the same loop ? Attackers are winning because they are 100% sure, that there are users who left the antispam filter working under the default settings. Or thinking that the running AV will protect against all threats for the next 10 years. Wake up dudes !

http://extremesecurity.blogpsot.com

]]>