virus logo Endpoint Vulnerability

Microsoft Office Access Connectivity Engine CVE-2019-0671 Remote Code Execution Vulnerability

description-logoDescription

Improper memory handling in Microsoft Office Access Connectivity Engine allows remote code execution when a victim opens a crafted file; the update fixes the issue.

affected-products-logoAffected Applications

Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2016 x64
Microsoft Office 2013 RT Service Pack 1
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Office 365 ProPlus for 64-bit Systems
Microsoft Office 2019 for 32-bit editions
Office 365 ProPlus for 32-bit Systems
Microsoft Office 2016 x86

Version Updates

Date Version Status Detail
2022-12-21 1.00365
Modified
 Microsoft Office 2010 Service Pack 2 (32-bit editions),Microsoft Office 2010 Service Pack 2 (64-bit editions),Microsoft Office 2013 Service Pack 1 (64-bit editions),Microsoft Office 2016 x64,Microsoft Office 2013 RT Service Pack 1,Microsoft Office 2019 for 64-bit editions,Microsoft Office 2013 Service Pack 1 (32-bit editions),Office 365 ProPlus for 64-bit Systems,Microsoft Office 2019 for 32-bit editions,Office 365 ProPlus for 32-bit Systems,Microsoft Office 2016 x86
2022-12-14 1.00363
Modified
 Windows 7,Windows Server 2016,Windows RT 8.
1,Microsoft Office 2016 x86,Microsoft Office 2010 Service Pack 2 (64-bit editions),Microsoft Office 2013 Service Pack 1 (64-bit editions),Microsoft Office 2016 x64,Microsoft Office 2013 RT Service Pack 1,Microsoft Office 2019 for 64-bit editions,Office 365 ProPlus for 64-bit Systems,Windows Server version 1803 (Server Core Installation),Microsoft Office 2019 for 32-bit editions,Microsoft Office 2013 Service Pack 1 (32-bit editions),Office 365 ProPlus for 32-bit Systems,Windows Server 2012,Windows 8,Windows Server 2008,Windows 10,Microsoft Office 2010 Service Pack 2 (32-bit editions),Windows Server version 1709 (Server Core Installation),Windows Server 2019
2019-09-11 1.00194
Modified
 Microsoft Office 2010 Service Pack 2 (32-bit editions),Microsoft Office 2010 Service Pack 2 (64-bit editions),Microsoft Office 2013 Service Pack 1 (64-bit editions),Microsoft Office 2016 x64,Microsoft Office 2013 RT Service Pack 1,Microsoft Office 2019 for 64-bit editions,Microsoft Office 2013 Service Pack 1 (32-bit editions),Office 365 ProPlus for 64-bit Systems,Microsoft Office 2019 for 32-bit editions,Office 365 ProPlus for 32-bit Systems,Microsoft Office 2016 x86
2019-02-12 1.00181
New
 Microsoft Office 2010 Service Pack 2 (32-bit editions),Microsoft Office 2010 Service Pack 2 (64-bit editions),Microsoft Office 2013 Service Pack 1 (64-bit editions),Microsoft Office 2016 x64,Microsoft Office 2013 RT Service Pack 1,Microsoft Office 2019 for 64-bit editions,Microsoft Office 2013 Service Pack 1 (32-bit editions),Office 365 ProPlus for 64-bit Systems,Microsoft Office 2019 for 32-bit editions,Office 365 ProPlus for 32-bit Systems,Microsoft Office 2016 x86

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2019-0671
ID 56767
Created Feb 12, 2019
Description
Updated		 Jan 10, 2026
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Microsoft
Patch auto
Application Microsoft Office 2010 Service Pack 2 (32-bit editions) , Microsoft Office 2010 Service Pack 2 (64-bit editions) , Microsoft Office 2013 Service Pack 1 (64-bit editions) , Microsoft Office 2016 x64 , Microsoft Office 2013 RT Service Pack 1 , Microsoft Office 2019 for 64-bit editions , Microsoft Office 2013 Service Pack 1 (32-bit editions) , Office 365 ProPlus for 64-bit Systems , Microsoft Office 2019 for 32-bit editions , Office 365 ProPlus for 32-bit Systems , Microsoft Office 2016 x86