vulnerability
Microsoft CVE-2019-0675: Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | 2019-02-12 | 2019-02-12 | 2019-08-08 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
2019-02-12
Added
2019-02-12
Modified
2019-08-08
Description
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.
An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file.
The update addresses the vulnerability by correcting the way the Microsoft Office Access Connectivity Engine handles objects in memory.
Solution(s)
msft-kb4018313-52a1c5f0-d3bc-4b82-8258-09749fa057a8msft-kb4018313-b10524c1-71cf-4b9f-956a-5dc8d8502919
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.