Microsoft Access CVE-2019-1400 Information Disclosure Vulnerability

description-logoDescription

An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. To exploit the vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how Microsoft Access handles objects in memory.

affected-products-logoAffected Applications

Office 365 ProPlus for 32-bit Systems
Microsoft Office 2016 x86
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2016 x64
Microsoft Office 2013 RT Service Pack 1
Microsoft Office 2019 for 64-bit editions
Office 365 ProPlus for 64-bit Systems
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Office 2010 Service Pack 2 (32-bit editions)

CVE References

CVE-2019-1400