Home > News > Technology > Security > Cyber-criminals exploit Access flaw

Security

Cyber-criminals exploit Access flaw

By Robert Jaques
Mar 7, 2008 8:28 AM
Tags: cybercriminals | exploit | access | flaw

Security experts have warned of a new vulnerability in Microsoft Access which is being used by cyber-criminals to install malware on victims' computers.

PandaLabs said that the security hole is exploited through specially crafted Access files (.mdb) embedded with malicious code.

The flaw is being used to distribute the Keylogger.DB Trojan which is designed to steal confidential data by logging keystrokes.

PandaLabs said that this is a similar security problem to that discovered a few months back, categorised as CVE-2007-6026, but the new flaw also affects the msjet40.dll library, albeit at a different point.

Luis Corrons, technical director of PandaLabs, said: "Whenever a vulnerability of this type appears cyber-crooks will try to take full advantage.

"We can therefore expect to see more malicious Access files in circulation that contain this Trojan and other types of threat."

Cyber-criminals exploit Access flaw

Related Articles

Researchers find zero day flaw in Windows Virtual PC

Microsoft investigating new zero-day exploit

Serious flaw discovered in Apache

Microsoft warns of new flaw in IE

Breaking Stories

Exetel, Netspace press case to become Tassie NBN ISPs

Mwave offers free shipping

HP settles spat over counterfeit printer ink

Microsoft makes new push for virtual desktops

Interview: Cloud to be enterprise ready by 2020, says RSA President

Copyright ©v3.co.uk

Send us your tips

Comments

Be the first to comment on this article.

Thoughts on this article? Add a comment below.

Comment:

Want to participate in the discussion?

Register for FREE

Or log in now to comment

Top Stories

A guided tour of Cisco's proof-of-concept centre

A data centre to test your customers' rigs.

Interview: Peter Kazacos and the "wild west" of IT

CRN talks to Hostech chairman and industry veteran, Peter Kazacos.

On the Move: March

Updated: Appointments and promotions.

Most Read
|
Most Discussed

Shortcutsall you need to know on...

Latest Comments

"Informative post. thanks for the info shared here about the Cloud computing conference. Recently ..."

on SNIA ANZ announces Cloud Computing Conference

by shruthihr_80 Mar 20, 2010 10:37 PM

"Haha...What a sad little man JL must be. Whinges about the NBN now wants in on it, We don't want ..."

on Exetel, Netspace press case to become Tassie NBN ISPs

by firey1 Mar 20, 2010 4:56 PM

"Thanks Glen, I've made those corrections."

on Case study: Cisco's first UCS customer Catholic Education

by sholtomacpherson Mar 19, 2010 10:33 AM

"This result is the law! It even applies to the small telco sellers in the mall of a shopping ..."

on Online retailer's 'reseller only' claims rejected

by peter Mar 18, 2010 9:10 PM

"Additionally, any small business with growth (and competition) on their mind would do well to ..."

on Opinion: “Myopic” Microsoft lost in the cloud

by bld Mar 16, 2010 9:54 PM

Polls

Have you experienced a problem when returning faulty goods to online retailers?

Never
Only once
All the time

| View results

Never

36%

Only once

18%

All the time

45%

TOTAL VOTES: 11

Vote now

view previous polls »

CRN Magazine

Issue: 277 | March, 2010

CRN Magazine looks in-depth at the emerging issues and developments for the Channel, and provides insight, analysis and strategic information to help resellers better run their businesses.

What's in this issue?

CRN Magazine

Subscribe Now!