CERTA-2004-AVI-129
Vulnerability from certfr_avis
None
Description
Jet est un moteur de base de données, composant de Windows. Il peut être installé par des applications telles que Microsoft Access ou Microsoft Visual Basic, et d'autres applications. Jet est installé sur un système si la bibliothèque msjet40.dll y est présente.
Une vulnérabilité de type débordement de mémoire dans Jet permet à un individu mal intentionné de prendre le contrôle à distance d'un système vulnérable.
Solution
Télécharger le correctif disponible sur le site de l'éditeur (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows NT Workstation 4.0 ;",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows XP ;",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows NT Server 4.0 ;",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 2000 ;",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows NT Server 4.0, Terminal Server Edition ;",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2003.",
"product": {
"name": "Windows",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nJet est un moteur de base de donn\u00e9es, composant de Windows. Il peut \u00eatre\ninstall\u00e9 par des applications telles que Microsoft Access ou Microsoft\nVisual Basic, et d\u0027autres applications. Jet est install\u00e9 sur un syst\u00e8me\nsi la biblioth\u00e8que msjet40.dll y est pr\u00e9sente.\n\nUne vuln\u00e9rabilit\u00e9 de type d\u00e9bordement de m\u00e9moire dans Jet permet \u00e0 un\nindividu mal intentionn\u00e9 de prendre le contr\u00f4le \u00e0 distance d\u0027un syst\u00e8me\nvuln\u00e9rable.\n\n## Solution\n\nT\u00e9l\u00e9charger le correctif disponible sur le site de l\u0027\u00e9diteur (cf.\nsection Documentation).\n",
"cves": [],
"initial_release_date": "2004-04-14T00:00:00",
"last_revision_date": "2004-04-14T00:00:00",
"links": [
{
"title": "R\u00e9f\u00e9rence CVE : CAN-2004-0197 :",
"url": "http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0197"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS04-014 :",
"url": "http://www.microsoft.com/technet/security/bulletin/ms04-014.mspx"
}
],
"reference": "CERTA-2004-AVI-129",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2004-04-14T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
}
],
"summary": null,
"title": "Vuln\u00e9rabilit\u00e9 dans le moteur de base de donn\u00e9es Microsoft Jet",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de S\u00e9curit\u00e9 Microsoft MS04-014",
"url": null
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…