This page lists publicly disclosed CVE vulnerabilities affecting microsoft jet (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2008-1200 | Unspecified vulnerability in Microsoft Access allows remote user-assisted attackers to execute arbitrary code via a crafted .MDB file, possibly related to Jet Engine (msjet40.dll). NOTE: this is probably a different issue than CVE-2007-6026. | [email protected] | 9.3 | 11.96% | 2008-03-06 | 2026-04-23 |
| CVE-2007-6026 | Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944. | [email protected] | 9.3 | 28.27% | 2007-11-20 | 2026-04-23 |
| CVE-2005-0944 | Unknown vulnerability in Microsoft Jet DB engine (msjet40.dll) 4.00.8618.0, related to insufficient data validation, allows remote attackers to execute arbitrary code via a crafted mdb file. | [email protected] | 7.5 | 34.02% | 2005-05-02 | 2026-04-16 |
| CVE-2004-0197 | Buffer overflow in Microsoft Jet Database Engine 4.0 allows remote attackers to execute arbitrary code via a specially-crafted database query. | [email protected] | 7.5 | 26.26% | 2004-06-01 | 2026-04-16 |
| CVE-2002-0859 | Buffer overflow in the OpenDataSource function of the Jet engine on Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code. | [email protected] | 7.5 | 26.17% | 2002-09-05 | 2026-04-16 |
| CVE-2000-0325 | The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability. | [email protected] | 7.2 | 3.73% | 1999-08-20 | 2026-04-16 |
| CVE-2000-0323 | The Microsoft Jet database engine allows an attacker to modify text files via a database query, aka the "Text I-ISAM" vulnerability. | [email protected] | 7.6 | 5.54% | 1999-07-28 | 2026-04-16 |