Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities
From: Steve Shockley (steve.shockley_at_shockley.net)
Date: 04/03/05
- Previous message: Thor (Hammer of God): "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- In reply to: Denis Jedig: "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- Next in thread: Son SonOfLilit: "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- Reply: Son SonOfLilit: "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 03 Apr 2005 13:13:14 -0400 To: "bugtraq-securityfocus.com" <bugtraq@securityfocus.com>
Denis Jedig wrote:
> Newer Access versions throw a security warning if the VBA code is not
> signed and let the user disable VBA execution. The issue highlighted by
> hexview is able to circumvent this security-related feature.
Access 2003 on WinXP SP2 throws a security warning when I open any
Access file, even one without VBA. I believe that's new with WinXP SP2.
- Previous message: Thor (Hammer of God): "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- In reply to: Denis Jedig: "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- Next in thread: Son SonOfLilit: "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- Reply: Son SonOfLilit: "Re: [HV-HIGH] Microsoft Jet DB engine vulnerabilities"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
