First published: Wed Apr 15 2020(Updated: )
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Office | =2010-sp2 | |
Microsoft Office | =2013 | |
Microsoft Office | =2013-sp1 | |
Microsoft Office | =2016 | |
Microsoft Office | =2019 | |
Microsoft Office 365 Proplus |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-0961 is a remote code execution vulnerability in the Microsoft Office Access Connectivity Engine.
CVE-2020-0961 affects multiple versions of Microsoft Office, including 2010, 2013, 2016, and 2019, as well as Office 365 Proplus.
CVE-2020-0961 has a severity rating of 7.8, which is considered critical.
To fix CVE-2020-0961, Microsoft has released security updates for the affected versions of Microsoft Office. It is recommended to install these updates as soon as possible.
You can find more information about CVE-2020-0961 on the Microsoft Security Guidance Advisory page: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0961