New Reviews

MSI Spatium M480 2TB NVMe SSD review
AMD Ryzen 5 5600G and Ryzen 7 5700G review
Announcement AMD Radeon RX 6600 XT
Arctic Liquid Freezer II 360 A-RGB review
Cooler Master Masterair MA624 Stealth/MA612 Stealth ARGB review
EVGA GeForce RTX 3080 Ti FTW3 Ultra Review
F1 2021: PC graphics performance benchmark review
Asustor Drivestor 4 Pro (AS3304T) NAS Review
Colorful iGame GeForce RTX 3090 KUDAN review
Corsair Virtuoso RGB Wireless XT headset review

New Downloads

Corsair Utility Engine Download (iCUE) Download v4.13.226
AMD Radeon Adrenalin 21.7.2 driver download
Intel HD graphics Driver Download Version: DCH 30.0.100.9684
GeForce 471.41 WHQL driver download
AMD Radeon Adrenalin 21.7.1 driver download
Crystal DiskMark 8.0.4 Download
CrystalDiskInfo 8.12.4 Download
Display Driver Uninstaller Download version 18.0.4.2
HWiNFO Download v7.06
GeForce 471.22 Hotfix driver download

New Forum Topics

Polish police IT Staff caught Illegally running crypto mining farm at police station Philips: New 4K OLED TVs unveiled for 2021 Alder Lake will be announced on October 27 during the “Intel Innovation” event MSI MAG ARTYMIS 324CP 31.5-inch curved gaming display / 165Hz / 1ms Windows can now automatically protects you from unwanted applications. Review: AMD Ryzen 5 5600G and Ryzen 7 5700G - ZEN3 with Built in Graphics Free to grab: Battlefield 5 on Amazon Prime Gaming NVIDIA Profile Inspector doesn't work (samp) NVIDIA GeForce 471.41 WHQL driver download & discussion New Upcoming ATI/AMD GPU's Thread: Leaks, Hopes & Aftermarket GPU's

(0day) Microsoft Windows Jet Database Engine Vulnerability

by Hilbert Hagedoorn on: 09/24/2018 08:29 AM | source: thehackernews | 0 comment(s)

(0day) Microsoft Windows Jet Database Engine Vulnerability

Trend Micro Security has found a bug in Microsoft's Jet Database Engine, a database system used in Microsoft Access and Visual Basic. A person could make an out-of-bounds write to the database, resulting in the ability to execute code remotely.

According to an advisory released by Zero Day Initiative (ZDI), the vulnerability is due to a problem with the management of indexes in the Jet database engine that, if exploited successfully, can cause an out-out-bounds memory write, leading to remote code execution.

An attacker must convince a targeted user into opening a specially crafted JET database file in order to exploit this vulnerability and remotely execute malicious code on a targeted vulnerable Windows computer.

Proof-of-concept exploit code for the vulnerability has also been published by the Trend Micro its GitHub page. Microsoft is working on a patch for the vulnerability, and since it was not included in September Patch Tuesday, you can expect the fix in Microsoft's October patch release.

Post New Comment

Click here to post a comment for this news story on the message forum.

Guru3D.com © 2021