N/A

Heap-based buffer overflow in Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2 and Windows Data Access Components (WDAC) 6.0 allows remote attackers to execute arbitrary code via crafted XML data that triggers access to an uninitialized object in memory, aka "ADO Cachesize Heap Overflow RCE Vulnerability."

N/A

N/A

Microsoft/Windows Data Access Components 基于堆的缓冲区错误漏洞

Microsoft Data Access Components (MDAC)是一套用于在Windows平台上提供数据库连接的组件。 Microsoft Data Access Components (MDAC) 2.8 SP1、SP2和Windows Data Access Components (WDAC) 6.0版本中存在基于堆的缓冲区溢出漏洞。远程攻击者可利用该漏洞通过特制的触发访问内存中未初始化对象的XML数据执行任意代码，又名‘ADO Cachesize堆溢出RCE漏洞’。

N/A

N/A