NVD

Id
13374  
Name
CVE-2010-1881  
Description
The FieldList ActiveX control in the Microsoft Access Wizard Controls in ACCWIZ.dll in Microsoft Office Access 2003 SP3 does not properly interact with the memory-access approach used by Internet Explorer and Office during instantiation, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML document that references this control along with crafted persistent storage data, aka "ACCWIZ.dll Uninitialized Variable Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-07-15  
Modified Date
2010-09-17  
Seq
2010-1881  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
74054 13374 CVE-2010-1881 oval:org.mitre.oval:def:11756  View
74055 13374 CVE-2010-1881 MS10-044  View
74056 13374 CVE-2010-1881 TA10-194A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35965 JVNDB-2010-001745 Microsoft Office Access の FieldList の ActiveX コントロール における任意のコードを実行される脆弱性 Microsoft Office Access の ACCWIZ.dll の Microsoft Access Wizard Controls 内にある FieldList の ActiveX コントロールには、インスタンス化する際、Internet Explorer および Office にて使用されるメモリアクセスを適切に処理しないため、任意のコードを実行される、またはサービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2010-1881 44461 CVE-2010-1881 13374 9.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001745.html 2010-07-13 2010-07-30 View