US-CERT: Hackers are exploiting Access database vulnerabilities
The latest warning from the US Emergency Computer Response Team (US-CERT) said cybercriminals are exploiting a flaw in Microsoft Office Access (database) database to install unauthorized software on computers. victim.
According to a brief warning issued by US-CERT on December 12, the organization said it had detected the behavior of sending Microsoft Access Database (.mdb) files specially designed for hackers.
The .mbd files are written for the purpose of executing commands on the computer, so as recommended by Microsoft, users do not run these files from unsafe sources.
Symantec said that companies usually block .mbd files, but criminal groups can direct attacks to specific targets. However, this time, Symantec itself has not received a report on the exploitation of the .mdb file to attack.
Although US-CERT does not say which hackers are exploiting the vulnerability, Symantec's prediction is that it may be a recently discovered buffer overflow in the Microsoft Jet DataBase engine used to process files. Access.
Van Han
- Hackers attack two serious
- Cisco Call Manager opens to welcome hackers
- 5 best free alternatives for Microsoft Access
- Two new vulnerabilities were discovered in Firefox
- First training Oracle Database 10G in Vietnam
- Adobe harms users when announcing dangerous vulnerabilities?
- Hackers massively exploit Windows security flaws
- Firefox 'patch', IE again
- Windows continues to be attacked
- Why do hackers like to wear hooded shirts, sitting in the dark?
- Vietnam is free to use Oracle Database XE
- Security software is about to turn into the main target of hackers