Lucene search
HistoryFeb 12, 2019 - 12:00 a.m.
Microsoft Access Database Engine ACEEXCL Out-Of-Bounds Read Remote Code Execution Vulnerability
EPSS
0.028
Percentile
90.8%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Access Database Engine. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when reading and writing to XLS files. Crafted data in an XLS file can trigger a read past the end of an allocated data structure. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
symantec
symantec
mscve
mscve
prion
prion
Remote code execution
2019-03-05 23:29:00
Remote code execution
2019-03-05 23:29:00
Remote code execution
2019-03-05 23:29:00
cvelist
cvelist
nvd
nvd
mskb
mskb
Description of the security update for Office 2013: February 12, 2019
2019-02-12 08:00:00
Description of the security update for Office 2016: February 12, 2019
2019-02-12 08:00:00
Description of the security update for Office 2010: February 12, 2019
2019-02-12 08:00:00
cve
cve
openvas
openvas
Microsoft Office 2016 Multiple RCE Vulnerabilities (KB4018294)
2019-02-13 00:00:00
Microsoft Office 2013 Service Pack 1 Multiple Vulnerabilities (KB4018300)
2019-02-13 00:00:00
Microsoft Office 2010 Service Pack 2 Multiple Vulnerabilities (KB4018313)
2019-02-13 00:00:00
nessus
nessus
Security Updates for Microsoft Office Products (February 2019)
2019-02-12 00:00:00
Security Updates for Microsoft Office Products C2R (February 2019)
2022-06-10 00:00:00
kaspersky
kaspersky
KLA11417 Multiple vulnerabilities in Microsoft Office
2019-02-12 00:00:00
KLA11879 Multiple vulnerabiltiies in Microsoft Products (ESU)
2019-02-12 00:00:00
KLA11418 Multiple vulnerabilities in Microsoft Windows
2019-02-12 00:00:00
talosblog
talosblog