Microsoft is investigating new public reports of a vulnerability in Microsoft Jet Database Engine. Customers running Windows Server 2003 Service Pack 2, Windows Vista, and Windows Vista Service Pack 1 are not vulnerable to the buffer overrun being attacked, as they include a version of the Microsoft Jet Database Engine that is not vulnerable to this issue.
At this time, Microsoft is aware of very limited, targeted attacks that use this vulnerability and is investigating the public reports and customer impact.
Anyone believed to have been affected can reach support online at this location:
Those in the United States can contact Customer Service and Support (CSS) at no charge using the PC Safety hotline at 1-866-PCSAFETY.
- Microsoft Security Advisory (950627) - Vulnerability in Microsoft Jet Database Engine (Jet) Could Allow Remote Code Execution
- MSRC Blog: Microsoft Security Advisory (950627)
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...