Lucene search

PRIOn knowledge basePRION:CVE-2012-1891

HistoryJul 10, 2012 - 9:55 p.m.

Heap overflow

2012-07-1021:55:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.958 High

EPSS

Percentile

99.4%

JSON

Heap-based buffer overflow in Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2 and Windows Data Access Components (WDAC) 6.0 allows remote attackers to execute arbitrary code via crafted XML data that triggers access to an uninitialized object in memory, aka “ADO Cachesize Heap Overflow RCE Vulnerability.”

CPENameOperatorVersion
data_access_componentseq2.8 sp1
data_access_componentseq2.8 sp2
windows_data_access_componentseq6.0

Name	Operator	Version
data_access_components	eq	2.8 sp1
data_access_components	eq	2.8 sp2
windows_data_access_components	eq	6.0

References

www.us-cert.gov/cas/techalerts/TA12-192A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-045

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14783

8.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.958 High

EPSS

Percentile

99.4%

JSON

Related for PRION:CVE-2012-1891