High severity7.8NVD Advisory· Published Mar 14, 2018· Updated Jun 17, 2026
CVE-2018-0903
CVE-2018-0903
Description
Microsoft Access 2010 SP2, Microsoft Access 2013 SP1, Microsoft Access 2016, and Microsoft Office 2016 Click-to-Run allow a remote code execution vulnerability due to how objects are handled in memory, aka "Microsoft Access Remote Code Execution Vulnerability".
Affected products
2- Microsoft Corporation/Microsoft Accessv5Range: Microsoft Access 2010 SP2, Microsoft Access 2013 SP1, Microsoft Access 2016, and Microsoft Office 2016 Click-to-Run
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0903nvdPatchVendor Advisory
- www.securityfocus.com/bid/103315nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040503nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.