Heap-based buffer overflow in Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2 and Windows Data Access Components (WDAC) 6.0 allows remote attackers to execute arbitrary code via crafted XML data that triggers access to an uninitialized object in memory, aka "ADO Cachesize Heap Overflow RCE Vulnerability."
History

Thu, 17 Oct 2024 19:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-908
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2012-07-10T21:00:00

Updated: 2024-10-17T18:28:20.800Z

Reserved: 2012-03-22T00:00:00

Link: CVE-2012-1891

cve-icon Vulnrichment

Updated: 2024-08-06T19:17:26.954Z

cve-icon NVD

Status : Modified

Published: 2012-07-10T21:55:06.150

Modified: 2024-11-21T01:37:59.163

Link: CVE-2012-1891

cve-icon Redhat

No data.