← volver
CVE-2020-1564

Jet Database Engine Remote Code Execution Vulnerability

EPSS 4.0%
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 4.0%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
17 ago 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory.