x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

MS08-028

Threat LevelLow threatDamageHighDistributionNot widespread
Common name:MS08-028
Technical name:MS08-028
Threat level:Medium
Alias:Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution
Type:Vulnerability
Effects:  

It is a critical vulnerability in the Jet 4.0 Database Engine, which allows hackers to gain remote control of the affected computer with the same privileges as the logged-on user.

Affected platforms:

Other

First detected on:May 14, 2008
Detection updated on:May 14, 2008
StatisticsNo

Brief Description 

    

MS08-028 is not categorized as virus, worm, Trojan or backdoor. It is a critical vulnerability in the Jet 4.0 Database Engine on Windows 2003/XP/2000 computers, which allows arbitrary code to be remotely executed in the vulnerable computer.

If exploited successfully, MS08-028 allows hackers to gain remote control of the affected computer with the same privileges as the logged-on user. If this user had administrator rights, the hacker could take complete control of the system: create, modify or delete files, install programs, create new user accounts, etc.

MS08-028 is exploited by sending a specially crafted jet file via email and enticing users into opening it or by hosting a specially crafted jet file in a web page and entincing users into visiting it.

 

If you have the Jet Database Engine installed on your Windows 2003/XP/2000 computer, it is recommended to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.