|MS12-045||Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution (2698365)||Microsoft Data||Critical||11-07-2012|
Brief overview of the risk:
The vulnerability could allow remote code execution if a user views a specially crafted webpage. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user.
Detailed Information on the risk:
A remote code execution vulnerability exists in the way that Microsoft Data Access Components accesses an object in memory that has been improperly initialized. An attacker who successfully exploited this vulnerability could run arbitrary code on the target system.
Further information on this exploit is available at : MS12-045
Affected SoftwareMicrosoft Data Access Components 2.8 Service Pack 1
Microsoft Data Access Components 2.8 Service Pack 2
Windows Data Access Components 6.0