INFO: MDAC Version Is Included in Windows 2000 Service Pack 4 (823939)

MORE INFORMATION

Microsoft Data Access Components 2.5 SP3 (version 2.53.6200.2) is included with Windows 2000 SP3 and is also available as a separate download. A security vulnerability exists in the Remote Data Services (RDS) component of MDAC 2.5 SP3.

Windows 2000 SP4 also includes MDAC 2.5 Service Pack 3 (version 2.53.6200.2) with a fix for the RDS security vulnerability.

The following is the list of files that are modified as a result of the fix:

Date         Time   Version      Size     File name
--------------------------------------------------------
21-Sep-2002  00:36  2.53.6202.0  856,768  Msadce.dll 
21-Sep-2002  00:36  2.53.6202.0  430,080  Msadco.dll
21-Sep-2002  00:36  2.53.6202.0  135,168  Msadcs.dll
21-Sep-2002  00:36  2.53.6202.0  615,655  Msdaprst.dll

Note These files are located in the following folder on the computer where Windows 2000 SP4 is installed:

InstallationDrive\Program Files\Common Files\System\msadc

The remaining MDAC components that are installed with Windows 2000 SP4 are the same components that are installed by MDAC 2.5 SP3. For additional information, visit the following Microsoft Web site:

http://support.microsoft.com/default.aspx?scid=/support/servicepacks/MDAC/2.5/SP3manifest.asp

REFERENCES

For additional information about the latest service pack for Windows 2000, click the following article number to view the article in the Microsoft Knowledge Base:

260910 How to Obtain the Latest Windows 2000 Service Pack

For additional information about the RDS security vulnerability, click the following article number to view the article in the Microsoft Knowledge Base:

329414 MS02-065: Buffer Overrun in Microsoft Data Access Components Can Lead to Code Execution (MDAC 2.6)

INFO: MDAC Version Is Included in Windows 2000 Service Pack 4 (823939)

SUMMARY

MORE INFORMATION

REFERENCES