A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory.
Microsoft Windows JET Database Engine Out-Of-Bounds Write Remote Code Execution Vulnerability
KB4550970: Windows 8.1 and Windows Server 2012 R2 April 2020 Security Update
KB4550965: Windows 7 and Windows Server 2008 R2 April 2020 Security Update
KB4550929: Windows 10 Version 1607 and Windows Server 2016 April 2020 Security Update
KB4549949: Windows 10 Version 1809 and Windows Server 2019 April 2020 Security Update
KB4549951: Windows 10 Version 1903 and Windows 10 Version 1909 April 2020 Security Update