vulnerability
Microsoft CVE-2019-0946: Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | May 14, 2019 | May 14, 2019 | Aug 6, 2019 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
May 14, 2019
Added
May 14, 2019
Modified
Aug 6, 2019
Description
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.
An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file.
The update addresses the vulnerability by correcting the way the Microsoft Office Access Connectivity Engine handles objects in memory.
Solutions
msft-kb4464561-4df082ab-b8f0-4453-b594-c11661727cf1msft-kb4464561-956bcc14-ef1d-4e83-a5fe-a80517c4c016msft-kb4464567-d98cfda4-77af-48cc-89c5-7147fdc61518msft-kb4464567-dc49e69c-71ca-46ef-8afc-90257dd60246
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.