| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS12-045 | Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution (2698365) | Microsoft Data | Critical | 11-07-2012 |
Technical Information
Brief overview of the risk:
The vulnerability could allow remote code execution if a user views a specially crafted webpage. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user.
Detailed Information on the risk:
A remote code execution vulnerability exists in the way that Microsoft Data Access Components accesses an object in memory that has been improperly initialized. An attacker who successfully exploited this vulnerability could run arbitrary code on the target system.
Further information on this exploit is available at : MS12-045
Affected Software
Microsoft Data Access Components 2.8 Service Pack 1Microsoft Data Access Components 2.8 Service Pack 2
Windows Data Access Components 6.0