We received reports on a malware utilizing a known vulnerability found in Microsoft”s Jet Database engine software. This vulnerability was known to public last April 2005 and is related to specially crafted .mdb files. The detection for the said malware is TROJ_MSADB.B.
For now, we are currently in the process of acquiring undetected samples of malwares that utilizes this vulnerability. It is noted that Microsoft still does not have a fix on this and malware authors may exploit this known vulnerability even more. It is then recommended that users be aware of this vulnerability and not to trust unsolicited .mdb files even if it came from known contacts.
For now, we are currently in the process of acquiring undetected samples of malwares that utilizes this vulnerability. It is noted that Microsoft still does not have a fix on this and malware authors may exploit this known vulnerability even more. It is then recommended that users be aware of this vulnerability and not to trust unsolicited .mdb files even if it came from known contacts.
