Icon of program: Microsoft Windows NT

Microsoft Windows NT

Download now

Used Microsoft Windows NT for Windows?

Clicking on the Download Now (Visit Site) button above will open a connection to a third-party site. Download.com cannot completely ensure the security of the software hosted on third-party sites.

Editors’ Review

Download.com staff
This bulletin details a critical security update for the Microsoft Jet Database Engine. It addresses a buffer overrun vulnerability allowing remote code execution and complete system control. Users are strongly advised to install this patch.

  • Pros

    • Fixes critical buffer overrun vulnerability.
    • Prevents unauthorized remote code execution.
    • Stops attackers from gaining full system control.
    • Revised version provides localized error messages.
    • Protects all supported language versions of Windows XP.

  • Cons

    • Original security update lacked full localization for errors.
    • Non-English Windows XP users must remove old update for localization.
Icon of program: Microsoft Windows NT

Microsoft Windows NT

Download now

Used Microsoft Windows NT for Windows?

Explore More

Full Specifications

GENERAL
Release
Latest update
Version
4.0.8618.0
OPERATING SYSTEMS
Platform
Windows
Operating System
  • Windows 10
  • Windows NT
Additional Requirements
Pentium or faster
POPULARITY
Total Downloads
1,869
Downloads Last Week
0
Report Software

Program available in other languages

Last Updated

Developer’s Description

By Microsoft
Vulnerability in MS Jet database Engine could allow code execution
Microsoft updated this bulletin on May 11, 2004 to advise on the availability of a revised version of the security update for non-English versions of Windows XP (as opposed to Windows XP Service Pack 1). The original update does address the vulnerability in Windows XP for all supported languages; however, the original update was not fully localized. Specifically, optional Jet error strings were only being offered in English on Windows XP. This issue does not affect other operating systems. If you have previously applied the security update for other operating systems, including Windows XP Service Pack 1, you need not take any additional action.

If you have previously applied the security update for non-English versions of Windows XP (as opposed to Windows XP Service Pack 1), you need not take any additional action as you are already protected from this vulnerability. However, if you want to have the Jet optional text error information in the same language as your Windows XP installation, you will need to remove the original security update MS04-014 (837001) following the Removal Information procedure located in this document and install the revised version. Once 837001 is uninstalled, revisiting Windows Update will result in the revised MS04-014 security update for Windows XP being re-offered with the correct, localized, optional text error strings.

The following files, on non-English systems only, were updated as part of this update: mswstr10.dll and msjint40.dll. You may see other files with new Date and Time information from the original release - these files remain unchanged, only the 2 files above have been updated.

A buffer overrun vulnerability exists in the Microsoft Jet Database Engine (Jet) that could allow remote code execution. An attacker who successfully exploited this vulnerability could take complete control of an affected system, including installing programs; viewing, changing, or deleting data; or creating new accounts that have full privileges.

Microsoft recommends that customers install the update at the earliest opportunity.

Download.com
Your review for Microsoft Windows NT