Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4493795
HistoryApr 09, 2019 - 12:00 a.m.

Description of the security update for the remote code execution vulnerability in Windows Embedded POSReady 2009: April 9, 2019

2019-04-0900:00:00
Microsoft
support.microsoft.com
28

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.4%

JSON

Description of the security update for the remote code execution vulnerability in Windows Embedded POSReady 2009: April 9, 2019

Summary

A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine incorrectly handles objects in memory.

To learn more about the vulnerability, go to CVE-2019-0671.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the standalone package for this update, go to the Microsoft Update Catalog website.
Important

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Information about protection and security

File information

File hash information

File name SHA1 hash SHA256 hash
WindowsXP-KB4493795-x86-Embedded-ENU.exe 9A084800B33B40776DA30E70293CCCFE4B0342F5 CFD142C85C7960FE38B261851AD1DF2DDB32B4F4417529F3DC95098835F625B4
Windows Embedded POSReady 2009 file information

For all supported x86-based versions

File name File version File size Date Time Platform
Msexcl40.dll 4.0.9801.14 340,992 14-Mar-2019 14:07 x86

Related

symantec 1
mscve 1
zdi 1
prion 5
openvas 13
mskb 17
cve 5
nessus 2
kaspersky 3
talosblog 1
symantec
symantec
Microsoft Office Access Connectivity Engine CVE-2019-0671 Remote Code Execution Vulnerability
2019-02-12 00:00:00
mscve
mscve
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
2019-02-12 08:00:00
zdi
zdi
Microsoft Access Database Engine ACEEXCL Use-After-Free Remote Code Execution Vulnerability
2019-02-12 00:00:00
prion
prion
Remote code execution
2019-03-05 23:29:00
Remote code execution
2019-03-05 23:29:00
Remote code execution
2019-03-05 23:29:00
openvas
openvas
Microsoft Office 2013 Service Pack 1 Multiple Vulnerabilities (KB4018300)
2019-02-13 00:00:00
Microsoft Office 2016 Multiple RCE Vulnerabilities (KB4018294)
2019-02-13 00:00:00
Microsoft Office 2010 Service Pack 2 Multiple Vulnerabilities (KB4018313)
2019-02-13 00:00:00
mskb
mskb
Description of the security update for Office 2016: February 12, 2019
2019-02-12 08:00:00
Description of the security update for Office 2013: February 12, 2019
2019-02-12 08:00:00
Description of the security update for Office 2010: February 12, 2019
2019-02-12 08:00:00
cve
cve
CVE-2019-0675
2019-03-05 23:29:00
CVE-2019-0672
2019-03-05 23:29:00
CVE-2019-0671
2019-03-05 23:29:00
nessus
nessus
Security Updates for Microsoft Office Products (February 2019)
2019-02-12 00:00:00
Security Updates for Microsoft Office Products C2R (February 2019)
2022-06-10 00:00:00
kaspersky
kaspersky
KLA11417 Multiple vulnerabilities in Microsoft Office
2019-02-12 00:00:00
KLA11879 Multiple vulnerabiltiies in Microsoft Products (ESU)
2019-02-12 00:00:00
KLA11418 Multiple vulnerabilities in Microsoft Windows
2019-02-12 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday — February 2019: Vulnerability disclosures and Snort coverage
2019-02-12 11:55:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.4%

JSON
Related for KB4493795
symantec1mscve1zdi1prion5openvas13mskb17cve5nessus2kaspersky3talosblog1