vulnerability
Microsoft CVE-2019-0826: Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Apr 9, 2019 | Apr 9, 2019 | Aug 6, 2019 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Apr 9, 2019
Added
Apr 9, 2019
Modified
Aug 6, 2019
Description
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.
An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file.
The update addresses the vulnerability by correcting the way the Microsoft Office Access Connectivity Engine handles objects in memory.
Solutions
msft-kb4462204-d20ffbd9-a3e1-4c07-9515-9077186ec5f3msft-kb4462204-ef872529-4a02-4006-8b98-46c6c5935fcdmsft-kb4464520-4caee245-3830-4fdb-8dd7-09bbbcdeb176msft-kb4464520-db76077e-c075-472c-9d33-8060b049ff96
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.