On July 27, 1999, Microsoft became aware of a security issue involving the ODBC database driver that is installed as a part of Microsoft Office. It is possible that a malicious coder could create an Office document that exploits a security vulnerability in this database driver to delete files and perform other malicious acts. A user could encounter this problem by opening a document attached to an e-mail message or linked to from a Web site.

On August 20, 1999, Microsoft produced a solution to this security vulnerability that eliminated the problem. However, Microsoft has recently become aware of a new scenario involving the Text I-ISAM component of the ODBC database driver that could be exploited in a new way to perform similar malicious acts.

Microsoft has updated the security patch to address all of the above security vulnerabilities. Because Microsoft takes all security issues very seriously, Microsoft recommends all Office customers download this updated security patch. The Microsoft Office 97 ODBC Update is for Office 97 users, the Microsoft Office 2000 ODBC Update is for Office 2000 users, and the Microsoft Office 95 ODBC Update is for Office 95 users.

Note: If you installed the original update, called the Excel ODBC Driver Vulnerability, prior to October 7, 1999, you should simply install this update on top of the original update.