CVE-2005-0944

Microsoft Jet DB engine <4.00.8618.0 - RCE

Title source: llm

Description

Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll) 4.00.8618.0, related to insufficient data validation, allows remote attackers to execute arbitrary code via a crafted mdb file.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Jean Luc · pythonlocalwindows

https://www.exploit-db.com/exploits/951

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Tal Zeltzer · pythonlocalwindows

https://www.exploit-db.com/exploits/929

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Stuart Pearson · clocalwindows

https://www.exploit-db.com/exploits/927

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/442610/100/100/threaded

[Mailing List] http://marc.info/?l=bugtraq&m=111231465920199&w=2

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/442446/100/100/threaded

[Vendor Advisory] http://www.hexview.com/docs/20050331-1.txt

[Various Sources] http://blogs.securiteam.com/?p=535

[US Government Resource] http://www.kb.cert.org/vuls/id/176380

Scores

EPSS 0.4394

EPSS Percentile 97.5%

Details

Status published

Products (1)

microsoft/jet < 4.0.8618.0

Published May 02, 2005

Tracked Since Feb 18, 2026