RE: Microsoft Access security

["David Gillett" <gillettdavid () fhda edu>]

  It's a simple substitution cipher -- in fact, the substitute
alphabet is in the same order as the plaintext alphabet.  At
a wild guess, the tool sits *between his ears*....

David Gillett


> -----Original Message-----
> From: Sanjay K. Patel [mailto:sanjay.patel () rexwire com]
> Sent: Wednesday, April 28, 2004 5:01 AM
> To: Burling, Matthewx; security-basics () securityfocus com;
> security () rexwire com
> Subject: RE: Microsoft Access security
>
>
> I dont mean to sound really stupid but for some reason I am 
> not getting it. 
> What tool can I use to convert from ASCII back to text?
>
> I was not able to find any converters on google and did not 
> see anyway to do 
> this using any of the office products.
>
> Thanks for all the help.
>
>
> ---------- Original Message -----------
> From: "Burling, Matthewx" <matthewx.burling () intel com>
> To: <security-basics () securityfocus com>, <sanjay.patel () rexwire com>, 
> <security () rexwire com>
> Sent: Wed, 28 Apr 2004 12:40:30 +0100
> Subject: RE: Microsoft Access security
>
> > ABCDEFGHIJKLMNOPQRSTUVWXYZ
> > jklmnopqrstuvwxyz
> >
> > ..., etc.
> >
> > -----Original Message-----
> > From: Sanjay K. Patel [mailto:sanjay.patel () rexwire com] 
> > Sent: 27 April 2004 15:54
> > To: 'Joerg Over Dexia'; security-basics () securityfocus com
> > Subject: RE: Microsoft Access security
> >
> >  what tool did you use to come up with that conversion?
> >
> > -----Original Message-----
> > From: Joerg Over Dexia [mailto:over () dexia de] 
> > Sent: Tuesday, April 27, 2004 6:10 AM
> > To: security () rexwire com; security-basics () securityfocus com
> > Subject: Re: Microsoft Access security
> >
> > Hi there,
> >
> > Am 15:58 26.04.2004 -0400 teilte security () rexwire com mir 
> folgendes mit:
> > ->We did not find any backdoors but we found out that he
> > encrypted two columns
> > ->of data in a access database. The data in the columns look like
> > this
> > ->:)Orwjwlrju)Yu&#402;)\}n);<99
> > ->
> > ->We cant figure out how he encrypted it. Has anyone seen this
> > before?
> >
> > No, I haven't seen that before.
> > However, it's probably "1 Financial Plz Ste 2300" (Not sure about 
> > the "z", that could be a "%" also, depending on conversion issues.)
> >  Now you know it, it should be easy to find out what happened. :)
> >  (Dunno if that's an Access feature?)
> >
> > Best regards, JO
> --------------------------------------------------------------
> -------------
> > Ethical Hacking at the InfoSec Institute. Mention this ad and get 
> > $545 off any course! All of our class sizes are guaranteed to be 10 
> > students or less to facilitate one-on-one interaction with one of 
> > our expert instructors. Attend a course taught by an expert 
> > instructor with years of in-the-field pen testing experience in our 
> > state of the art hacking lab. Master the skills of an 
> Ethical Hacker 
> > to better assess the security of your organization. Visit us at: 
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> >
> --------------------------------------------------------------
> --------------
> ------- End of Original Message -------
>
>
> --------------------------------------------------------------
> -------------
> Ethical Hacking at the InfoSec Institute. Mention this ad and 
> get $545 off 
> any course! All of our class sizes are guaranteed to be 10 
> students or less 
> to facilitate one-on-one interaction with one of our expert 
> instructors. 
> Attend a course taught by an expert instructor with years of 
> in-the-field 
> pen testing experience in our state of the art hacking lab. 
> Master the skills 
> of an Ethical Hacker to better assess the security of your 
> organization. 
> Visit us at: 
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> --------------------------------------------------------------
> --------------

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------