Vulnerabilities > CVE-2004-0197 - Remote Code Execution vulnerability in Microsoft JET 4.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS04-014.NASL |
description | The remote host has a bug in its Microsoft Jet Database Engine (837001). An attacker could exploit one of these flaws to execute arbitrary code on the remote system. To exploit this flaw, an attacker would need the ability to craft a specially malformed database query and have this engine execute it. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 12207 |
published | 2004-04-13 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/12207 |
title | MS04-014: Microsoft Hotfix (credentialed check) (837001) |
code |
|
Oval
accepted | 2015-08-10T04:01:12.734-04:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
definition_extensions |
| ||||||||
description | Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query. | ||||||||
family | windows | ||||||||
id | oval:org.mitre.oval:def:968 | ||||||||
status | accepted | ||||||||
submitted | 2004-04-13T12:00:00.000-04:00 | ||||||||
title | MS Jet Database Buffer Overflow | ||||||||
version | 67 |
References
- http://www.kb.cert.org/vuls/id/740716
- http://www.securityfocus.com/bid/10112
- http://www.us-cert.gov/cas/techalerts/TA04-104A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-014
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15703
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A968