QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2010-1881

Back to search

CVE-2010-1881

Published: Jul 14, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

The FieldList ActiveX control in the Microsoft Access Wizard Controls in ACCWIZ.dll in Microsoft Office Access 2003 SP3 does not properly interact with the memory-access approach used by Internet Explorer and Office during instantiation, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML document that references this control along with crafted persistent storage data, aka "ACCWIZ.dll Uninitialized Variable Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

MS10-044
vendor-advisory
x_refsource_MS
TA10-194A
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:11756
vdb-entry
signature
x_refsource_OVAL

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now