CVE-2019-1155: A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited…

high7.8CVSS 3.1

AVLACLPRNUIRSUCHIHAH

A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory.

Affected

57 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	microsoft_office_2010_service_pack_2	>= 13.0.0.0 < publication	publication
microsoft	microsoft_office_2013_service_pack_1	>= 15.0.0 < publication	publication
microsoft	microsoft_office_2016	>= 16.0.0 < publication	publication
microsoft	microsoft_office_2019	>= 19.0.0 < https://aka.ms/OfficeSecurityReleases	https://aka.ms/OfficeSecurityReleases
microsoft	office	—	—
microsoft	office	—	—
microsoft	office	—	—
microsoft	office	—	—
microsoft	office_365_proplus	>= 16.0.0 < publication	publication
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10	—	—
microsoft	windows_10_version_1507	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1607	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1703	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1709	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1709_for_32-bit_systems	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1803	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1809	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1903_for_32-bit_systems	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1903_for_arm64-based_systems	>= 10.0.0 < publication	publication
microsoft	windows_10_version_1903_for_x64-based_systems	>= 10.0.0 < publication	publication