Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
Promo: Windows 10 Pro + Office 2016 for $33
MSI Radeon RX 5500 XT GamingX 8GB review
ASUS Dual Radeon RX 5500 XT EVO 8GB review
PowerColor Radeon RX 5500 XT Red Dragon 8GB review
Gigabyte Radeon RX 5500 XT Gaming 8GB review
Sapphire Pulse Radeon RX 5500 XT 4GB review
Zotac Gaming GTX 1650 Super review
Radeon Adrenalin 2020 Edition Driver Overview
Guru3D Winter 2019 PC Buyer Guide
Corsair QL120 and QL140 RGB fan review

New Downloads
AMD Radeon Adrenalin Edition 19.12.2 driver download
PCMark 10 Download v2.0.2153
GeForce 441.66 WHQL driver download
CPU-Z download v1.91
GPU-Z Download v2.28.0
3DMark Download v2.11.6846 + Port Royale
HWiNFO64 Download v6.20
AMD Radeon Adrenalin Edition 19.12.1 driver download
Crystal DiskMark Download v7.0.0f
AMD Ryzen Master Utility Download v2.1.0.1424


New Forum Topics
Guru3D 2019 December 13th contest: Win 32GB G.Skill Trident Z Neo 3600 MHz DDR4 Detroit: Become Human PC requirements RADEON Adrenalin 2020 - v19.12.2 New Upgrade from 3570k to R7 3800x Intel CPUs: Ten-year plan to includes 1.4nm and a two-year cadence NVidia Anti-Aliasing Guide (updated) Are we ever going to get a new NVIDIA CONTROL PANEL ??? New Upcoming ATI/AMD GPU's Thread: Leaks, Hopes & Aftermarket GPU's Part 2 NVIDIA Vulkan Developer Beta Driver 441.71 Guru3D 2019 December 12th contest: Win an Aorus 360 Liquid Cooler




Guru3D.com » News » (0day) Microsoft Windows Jet Database Engine Vulnerability

(0day) Microsoft Windows Jet Database Engine Vulnerability

by Hilbert Hagedoorn on: 09/24/2018 07:29 AM | source: thehackernews | 0 comment(s)
(0day) Microsoft Windows Jet Database Engine Vulnerability

Trend Micro Security  has found a bug in Microsoft's Jet Database Engine, a database system used in Microsoft Access and Visual Basic. A person could make an out-of-bounds write to the database, resulting in the ability to execute code remotely.

According to an advisory released by Zero Day Initiative (ZDI), the vulnerability is due to a problem with the management of indexes in the Jet database engine that, if exploited successfully, can cause an out-out-bounds memory write, leading to remote code execution.

An attacker must convince a targeted user into opening a specially crafted JET database file in order to exploit this vulnerability and remotely execute malicious code on a targeted vulnerable Windows computer. 

Proof-of-concept exploit code for the vulnerability has also been published by the Trend Micro its GitHub page. Microsoft is working on a patch for the vulnerability, and since it was not included in September Patch Tuesday, you can expect the fix in Microsoft's October patch release.







Rate this story
Rating:

« Prices Intel Coffee Lake Procs Are Skyrocketing due to 14nm shortages · (0day) Microsoft Windows Jet Database Engine Vulnerability · MSI Gaming OSD App offers an optimized mode for RTX Ray-tracing in October »

Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2019