Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: patching MDAC 2.x 2.81.1117.0

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Microsoft
And, this specific program:
Microsoft Data Access Components (MDAC) 2.x

This thread has been marked as locked.
drdio patching MDAC 2.x 2.81.1117.0
Member 10th Feb, 2009 02:09
Ranking: 0
Posts: 2
User Since: 3rd Feb, 2008
System Score: N/A
Location: N/A
I keep getting an insecure alert to the file MDAC 2.x (2.81.117.0), at c:\i386\msadox.dll. I have updated everything I know to on the Microsoft Update site. Any ideas are appreciated.

dda

Maurice Joyce RE: patching MDAC 2.x 2.81.1117.0
Handling Contributor 10th Feb, 2009 02:43
Score: 11799
Posts: 9,040
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Secunia FAQ states:
However, please note that some Windows systems may have an "installation backup" folder located in your computer, which can be used to reinstall your copy of Windows programs in the absence of an installation disc. For example, a common "installation backup" folder is "C:\i386".

The Secunia PSI may detect certain Windows programs in these "installation backup" folders as insecure. This may be because Windows Update installs patches only in the default installation folder of Windows, and not in "installation backup" folders. As a result, while your usable Windows files are patched, your backup Windows files may not be.

On that basis, it is safe to create an ignore rule

Creating an IGNORE RULE

Click on the SETTINGS tab>scroll to the bottom & click on CREATE IGNORE RULE

In the RULE NAME BOX insert something like MY BACKUP FOLDER

In the RULE BOX type C:\i386
Click SAVE IGNORE RULE>CLOSE

The folder will no longer be scanned by Secunia


--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+1
-0
Lottie Winter RE: patching MDAC 2.x 2.81.1117.0
Member 10th Feb, 2009 23:36
Score: 0
Posts: 5
User Since: 6th May 2008
System Score: N/A
Location: N/A
on 10th Feb, 2009 02:09, drdio wrote:
I keep getting an insecure alert to the file MDAC 2.x (2.81.117.0), at c:\i386\msadox.dll. I have updated everything I know to on the Microsoft Update site. Any ideas are appreciated.

dda

Was this reply relevant?
+0
-0
churruca RE: patching MDAC 2.x 2.81.1117.0
Member 18th Feb, 2009 15:14
Score: 0
Posts: 2
User Since: 13th Feb 2009
System Score: N/A
Location: N/A
on 10th Feb, 2009 02:09, drdio wrote:
I keep getting an insecure alert to the file MDAC 2.x (2.81.117.0), at c:\i386\msadox.dll. I have updated everything I know to on the Microsoft Update site. Any ideas are appreciated.

dda

Was this reply relevant?
+0
-0
churruca RE: patching MDAC 2.x 2.81.1117.0
Member 18th Feb, 2009 15:14
Score: 0
Posts: 2
User Since: 13th Feb 2009
System Score: N/A
Location: N/A
on 10th Feb, 2009 02:43, Maurice Joyce wrote:
Secunia FAQ states:
However, please note that some Windows systems may have an "installation backup" folder located in your computer, which can be used to reinstall your copy of Windows programs in the absence of an installation disc. For example, a common "installation backup" folder is "C:\i386".

The Secunia PSI may detect certain Windows programs in these "installation backup" folders as insecure. This may be because Windows Update installs patches only in the default installation folder of Windows, and not in "installation backup" folders. As a result, while your usable Windows files are patched, your backup Windows files may not be.

On that basis, it is safe to create an ignore rule

Creating an IGNORE RULE

Click on the SETTINGS tab>scroll to the bottom & click on CREATE IGNORE RULE

In the RULE NAME BOX insert something like MY BACKUP FOLDER

In the RULE BOX type C:\i386
Click SAVE IGNORE RULE>CLOSE

The folder will no longer be scanned by Secunia

Was this reply relevant?
+0
-0
Greyghost RE: patching MDAC 2.x 2.81.1117.0
Member 27th Mar, 2009 00:08
Score: 0
Posts: 3
User Since: 8th Feb 2008
System Score: N/A
Location: N/A
I wonder if the actual problem isn't that Microsoft is saying they are using ver 2.81.117.0 and the Secunia search engine is finding ver 2.81.1117.0?

There is an extra digit in the one that Secunia is finding, obviously put there by Microsoft or whoever wrote that piece of software that is not in the one that Microsoft is saying that they are using. Check the Support Knowledge Base.

Was this reply relevant?
+0
-0
Greyghost RE: patching MDAC 2.x 2.81.1117.0
Member 27th Mar, 2009 00:09
Score: 0
Posts: 3
User Since: 8th Feb 2008
System Score: N/A
Location: N/A
Last edited on 27th Mar, 2009 00:12
Read the post by Greyghost at the bottom of the page...
Was this reply relevant?
+0
-0
urielpinazza RE: patching MDAC 2.x 2.81.1117.0
Member 25th Sep, 2009 17:29
Score: 1
Posts: 1
User Since: 25th Sep 2009
System Score: N/A
Location: N/A
Latest version is 2.81.1132.0
Do a search in your PC , find it and replace file in i386 folder.
Was this reply relevant?
+1
-0
billegate RE: patching MDAC 2.x 2.81.1117.0
Member 15th Nov, 2009 09:46
Score: 8
Posts: 17
User Since: 5th Jan 2008
System Score: N/A
Location: FR
Last edited on 15th Nov, 2009 09:55
on 25th Sep, 2009 17:29, urielpinazza wrote:
Latest version is 2.81.1132.0
Do a search in your PC , find it and replace file in i386 folder.

good idea but where to find the new 2.81.1132.0?
finally I found it it was in common file so I replace the one in system 32 by this one. Thanks for the info

--
billegate
Was this reply relevant?
+0
-0
elliott911 RE: patching MDAC 2.x 2.81.1117.0
Member 10th Feb, 2010 21:15
Score: 3
Posts: 3
User Since: 10th Feb 2010
System Score: N/A
Location: N/A
this option works quite well if you search for the correct file name
Was this reply relevant?
+1
-0
TiMow RE: patching MDAC 2.x 2.81.1117.0
Dedicated Contributor 11th Feb, 2010 07:54
Score: 737
Posts: 728
User Since: 26th Jun 2009
System Score: N/A
Location: CH
This was a previous, similar thread:

http://secunia.com/community/forum/thread/show/343...

It gives info relating to M.D.A.C., i386 and possible acceptable solution; with input from "Secunia Official"

TiMow

--
Computing is not yet a perfect science - it still requires humans.
Was this reply relevant?
+1
-0
elliott911 RE: patching MDAC 2.x 2.81.1117.0
Member 12th Feb, 2010 23:43
Score: 3
Posts: 3
User Since: 10th Feb 2010
System Score: N/A
Location: N/A
If this helps here is how I fixed this.

1. I did a search for the file responsible for the "insecurity". The file is msadox.dll

2. I located and copied the most up to date version of this file. That version is 2.81.1132.0. located in the C:\i386 folder. Right click on the file and check the version to ensure it is correct.

3. C:\Program files\Common files\System\ado contains the older version that is causing the problem.

4. I then deleted the older version of this file, and pasted the new version.

Hope this helps, and makes sense, this is my first post of this length.
Was this reply relevant?
+2
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer