CVE-2019-0947
First published: Thu May 16 2019(Updated: )
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0945, CVE-2019-0946.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2010-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2019-0947?
CVE-2019-0947 has been classified as a critical remote code execution vulnerability.
How do I fix CVE-2019-0947?
To mitigate CVE-2019-0947, users should update Microsoft Office to the latest security patches provided by Microsoft.
Which versions of Microsoft Office are affected by CVE-2019-0947?
CVE-2019-0947 affects Microsoft Office 2010 with Service Pack 2.
Can CVE-2019-0947 be exploited remotely?
Yes, CVE-2019-0947 is a remote code execution vulnerability that can be exploited over a network.
What are the potential impacts of CVE-2019-0947?
Exploitation of CVE-2019-0947 could allow an attacker to execute arbitrary code on the affected system.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/remedy
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2010-sp2