Backdoor.Hesive - 0 Day MS Access Jet Engine Exploit
Backdoor.Hesive is a Trojan horse that opens a back door on the compromised computer and allows a remote attacker unauthorized access. The Trojan may arrive as a Microsoft Access file that exploits the Microsoft Jet Database Engine Malformed Database File Buffer Overflow Vulnerability (described in Bugtraq ID 12960).
Microsoft Jet Database Engine Malformed Database File Buffer Overflow Vulnerability
Solution: Currently we are not aware of any vendor-supplied patches for this issue
Allows the remote attacker the ability to perform the following actions:
List active ports
List processes, services, and threads
Download and execute remote files
Run a system shell
Modify registry values
Get system information
Get network information
Post collected data to hostile web site
Edited by harrywaldron, 28 September 2005 - 08:39 AM.