Microsoft Jet vulnerabilities

CVE-2008-1200 [CRITICAL] CVE-2008-1200: Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbit Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbitrary code via a crafted .MDB file, possibly related to Jet Engine (msjet40.dll). NOTE: this is probably a different issue than CVE-2007-6026.

CVE-2007-6026 [CRITICAL] CWE-119 CVE-2007-6026: Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944.

CVE-2005-0944 [HIGH] CVE-2005-0944: Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll) 4.00.8618.0, related to insufficient Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll) 4.00.8618.0, related to insufficient data validation, allows remote attackers to execute arbitrary code via a crafted mdb file.

CVE-2004-0197 [HIGH] CVE-2004-0197: Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary co Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query.

CVE-2002-0859 [HIGH] CVE-2002-0859: Buffer overflow in the OpenDataSource function of the Jet engine on Microsoft SQL Server 2000 allows Buffer overflow in the OpenDataSource function of the Jet engine on Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code.

CVE-2000-0325 [HIGH] CVE-2000-0325: The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka t The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability.

CVE-2000-0323 [HIGH] CVE-2000-0323: The Microsoft Jet database engine allows an attacker to modify text files via a database query, aka The Microsoft Jet database engine allows an attacker to modify text files via a database query, aka the "Text I-ISAM" vulnerability.