CVE-2018-8393

The connected advisory CPAI-2018-0959 confirms CVE-2018-8393: a remote code execution vulnerability in the Microsoft JET Database Engine (Jet) caused by a buffer overflow. An attacker could trigger it by convincing a user to open a specially crafted Excel file, enabling arbitrary code execution o...

CVE-2018-8392

CVE-2018-8392 is a heap-based buffer overflow in the Microsoft Jet Database Engine. The issue arises from improper handling of in-memory objects, enabling a remote, unauthenticated attacker to exploit by enticing a user to open a specially crafted Excel file, potentially leading to remote code ex...

CVE-2018-8392

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008,...

CVE-2018-8393

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008,...

Microsoft Jet Database Engine Buffer Overflow Vulnerability (CNVD-2018-21206)

Microsoft Windows 10, etc. are a series of operating systems released by Microsoft Corporation in the U.S. JET Database Engine is one of the underlying database engines. A buffer overflow vulnerability exists in Microsoft JET Database Engine. The vulnerability can be exploited by a remote attacke...

Microsoft Jet Database Engine Buffer Overflow Vulnerability (CNVD-2019-00354)

Microsoft Windows 10, etc. are a series of operating systems released by Microsoft Corporation in the U.S. JET Database Engine is one of the underlying database engines. A buffer overflow vulnerability exists in Microsoft JET Database Engine. The vulnerability can be exploited by a remote attacke...

Microsoft Windows Multiple Vulnerabilities (KB4457131)

This host is missing a critical security update according to Microsoft KB4457131 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Windows Multiple Vulnerabilities (KB4457144)

This host is missing a critical security update according to Microsoft KB4457144. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft JET Database Engine Remote Code Execution Vulnerability

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or...

Microsoft JET Database Engine Remote Code Execution Vulnerability

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or...

September 11, 2018—KB4457144 (Monthly Rollup)

September 11, 2018—KB4457144 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4343894 released August 30, 2018 and addresses the following issues: Security updates to Windows media, Windows Shell, Windows Hyper-V, Windows...

September 11, 2018—KB4458010 (Monthly Rollup)

September 11, 2018—KB4458010 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against a new speculative execution side-channel vulnerability known as L1 Terminal Fault L1TF that affects Intel® Core® processors and Intel® Xeon®...

September 11, 2018—KB4457984 (Security-only update)

September 11, 2018—KB4457984 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Provides protections against a new speculative execution side-channel vulnerabili...

September 11, 2018—KB4457140 (Security-only update)

September 11, 2018—KB4457140 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Security updates to Windows media, Windows Shell, .NET Framework, Windows Hyper-V...

September 11, 2018—KB4457138 (OS Build 15063.1324)

September 11, 2018—KB4457138 OS Build 15063.1324 Note This release also contains updates for Windows 10 Mobile OS Build 15063.1324 released September 11, 2018. Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. K...

September 11, 2018—KB4457135 (Monthly Rollup)

September 11, 2018—KB4457135 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4343895 released August 30, 2018 and addresses the following issues: Security updates to Windows media, Windows Shell, .NET Framework, Windows...

Microsoft Jet Database Engine CVE-2018-8393 Buffer Overflow Vulnerability

Description Microsoft Jet Database Engine is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. An attacker can exploit this issue to execute arbitrary code in the context of an affect...

Microsoft Jet Database Engine CVE-2018-8392 Buffer Overflow Vulnerability

Description Microsoft Jet Database Engine is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. An attacker can exploit this issue to execute arbitrary code in the context of an affect...

KLA11890 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

KB4457145: Windows 7 and Windows Server 2008 R2 September 2018 Security Update

The remote Windows host is missing security update 4457145 or cumulative update 4457144. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers. The vulnerability could...