CVE-2020-1473 : Security Advisory and Response

The Jet Database Engine Remote Code Execution Vulnerability was published on 2020-08-11 by Microsoft. It affects various Windows versions including Windows 10 and Windows Server.

Understanding CVE-2020-1473

This CVE involves a remote code execution vulnerability in the Windows Jet Database Engine, allowing attackers to execute arbitrary code on a victim's system.

What is CVE-2020-1473?

A vulnerability in the Windows Jet Database Engine lets attackers execute arbitrary code by exploiting how objects are handled in memory.

The Impact of CVE-2020-1473

The impact of this vulnerability is classified as Remote Code Execution, with a CVSS v3.1 base score of 7 (High severity).

Technical Details of CVE-2020-1473

This section provides more technical details about the vulnerability.

Vulnerability Description

The flaw arises from improper memory object handling in the Windows Jet Database Engine.

Affected Systems and Versions

Windows 10 Version 1803, 1809, 1909, 1709, 1903, 1507, 1607, 2004
Windows Server 2019, Server Core installation
Windows Server 2016, Server Core installation
Windows 7, 8.1
Windows Server 2008, 2008 R2, 2012, 2012 R2

Exploitation Mechanism

Attackers can exploit this vulnerability through specially crafted files that entice victims to open them.

Mitigation and Prevention

To protect systems from CVE-2020-1473, certain steps need to be taken.

Immediate Steps to Take

Apply the security update provided by Microsoft to fix the vulnerability.
Educate users about the risks associated with opening suspicious files.

Long-Term Security Practices

Regularly update systems with the latest security patches and software updates.
Employ robust endpoint protection solutions to prevent exploitation attempts.

Patching and Updates

Microsoft has released an update to address this vulnerability in the Jet Database Engine handling of memory objects.