Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: MDAC 2.x Insecurity Notice

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
PSI

This thread has been marked as locked.
StevenYork MDAC 2.x Insecurity Notice
Member 26th Nov, 2008 18:17
Ranking: 0
Posts: 9
User Since: 25th Nov, 2008
System Score: N/A
Location: US
When I uncheck Show only easy-to-patch programs in the Settings tab, I get an indication that I have an insecure file, namely Microsoft Data Access Components (MDAC) 2.x (CAT. 4 THREAT). When I try to update this at Microsoft per the instructions under the Insecure tab, I get a reply from Microsoft that I have the latest file already installed. Does anyone have the same problem and know what I should do? Appreciate any help available.

BigDave_39 RE: MDAC 2.x Insecurity Notice
Member 26th Nov, 2008 20:58
Score: 0
Posts: 177
User Since: 26th Nov 2008
System Score: N/A
Location: Washington, DC, US
Could you copy the path of the MDAC file that the PSI discovered?

--
Big Dave
Was this reply relevant?
+0
-0
StevenYork RE: MDAC 2.x Insecurity Notice
Member 26th Nov, 2008 23:12
Score: 0
Posts: 9
User Since: 25th Nov 2008
System Score: N/A
Location: US
I really can't tell. As best I can determine it is the following:

c:\Program Files\Common Files\System\ado

although when I surf to that file, there is no file with MDAC in it. In a system search, I found numerous files with MDAC as a part of the name. PSI didn't tell me what the path is. It simply says:

"This installation of Microsoft Data Access Components (MDAC) 2.x is insecure and potentially exposes your system to security threats!
Secunia strongly recommends that you update this program by installing the update that is provided by the vendor of this program."

This I tried and Microsoft says my version is up to date.
Was this reply relevant?
+0
-0
StevenYork RE: MDAC 2.x Insecurity Notice
Member 26th Nov, 2008 23:16
Score: 0
Posts: 9
User Since: 25th Nov 2008
System Score: N/A
Location: US
I really can't tell. As best I can determine it is the following:

c:\Program Files\Common Files\System\ado

although when I surf to that file, there is no file with MDAC in it. In a system search, I found numerous files with MDAC as a part of the name. PSI didn't tell me what the path is. It simply says:

"This installation of Microsoft Data Access Components (MDAC) 2.x is insecure and potentially exposes your system to security threats!
Secunia strongly recommends that you update this program by installing the update that is provided by the vendor of this program."

This I tried and Microsoft says my version is up to date.
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability