Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiHossein Lotfi of Trend Micro Zero Day InitiativeZDI-20-461
HistoryApr 15, 2020 - 12:00 a.m.

Microsoft Windows JET Database Engine Memory Corruption Remote Code Execution Vulnerability

2020-04-1500:00:00
Hossein Lotfi of Trend Micro Zero Day Initiative
www.zerodayinitiative.com
12

0.01 Low

EPSS

Percentile

83.9%

JSON

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the JET database engine. The issue results from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. An attacker can leverage this vulnerability to execute code in the context of the current process.

Related

mscve 1
zdi 1
nvd 10
cve 10
prion 10
cvelist 10
mskb 14
nessus 10
openvas 8
kaspersky 2
avleonov 1
mscve
mscve
Jet Database Engine Remote Code Execution Vulnerability
2020-04-14 07:00:00
zdi
zdi
Microsoft Windows JET Database Engine Integer Underflow Remote Code Execution Vulnerability
2020-04-15 00:00:00
nvd
nvd
CVE-2020-0988
2020-04-15 15:15:19
CVE-2020-0999
2020-04-15 15:15:19
CVE-2020-0992
2020-04-15 15:15:19
cve
cve
CVE-2020-0953
2020-04-15 15:15:17
CVE-2020-1008
2020-04-15 15:15:20
CVE-2020-0959
2020-04-15 15:15:17
prion
prion
Remote code execution
2020-04-15 15:15:00
Remote code execution
2020-04-15 15:15:00
Remote code execution
2020-04-15 15:15:00
cvelist
cvelist
CVE-2020-0889
2020-04-15 15:12:43
CVE-2020-0953
2020-04-15 15:13:01
CVE-2020-0959
2020-04-15 15:13:04
mskb
mskb
April 14, 2020—KB4550957 (Security-only update)
2020-04-14 07:00:00
April 14, 2020—KB4550951 (Monthly Rollup)
2020-04-14 07:00:00
April 14, 2020—KB4550971 (Security-only update)
2020-04-14 07:00:00
nessus
nessus
KB4550957: Windows Server 2008 April 2020 Security Update
2020-04-14 00:00:00
KB4550965: Windows 7 and Windows Server 2008 R2 April 2020 Security Update
2020-04-14 00:00:00
KB4550970: Windows 8.1 and Windows Server 2012 R2 April 2020 Security Update
2020-04-14 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4550964)
2020-04-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4550961)
2020-04-15 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4550930)
2020-04-15 00:00:00
kaspersky
kaspersky
KLA11743 Multiple vulnerabilities in Microsoft products (ESU)
2020-04-14 00:00:00
KLA11744 Multiple vulnerabilities in Microsoft Windows
2020-04-14 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday April 2020: my classification script, confusing RCE in Adobe Type Manager and updates for older vulnerabilities
2020-04-26 01:24:38

0.01 Low

EPSS

Percentile

83.9%

JSON
Related for ZDI-20-461
mscve1zdi1nvd10cve10prion10cvelist10mskb14nessus10openvas8kaspersky2avleonov1