CVE Reference: CVE-2008-1092

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2008-1092

Description:
Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this is the same issue as CVE-2007-6026.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/41380

ST
  1019686

MSKB
  http://www.microsoft.com/technet/security/advisory/950627.mspx

MS
  http://www.microsoft.com/technet/security/bulletin/ms08-028.mspx

HP
  http://marc.info/?l=bugtraq&m=121129490723574&w=2

CERT-VN
  936529


Return to the previous page.