CVE-2007-6026

Description

Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944.

Risk Information

Base Score

9.6

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:F/RL:O/RC:C

EPSS Score

Exploitation Probability

77.332

Associated Vulnerability

Vulnerability	OS Platform
Security Update for Windows 2000 (KB950749)	Windows
Security Update for Windows XP (KB950749)	Windows
Security Update for Windows Server 2003 (KB950749)	Windows
Security Update for Windows Server 2003 x64 Edition (KB950749)	Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234