Snapshot Viewer MS Access ActiveX Control Vulnerability

Microsoft has released an advisory for a MS Access remote code-execution vulnerability. The flaw lies in the Microsoft Snapshot Viewer ActiveX control, “snapview.ocx”, which may allow remote code-execution attacks. This affects Office Access 2000, Office Access 2002 and Office Access 2003.

An attacker could exploit this vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution.

There’s no patch available yet, but there are manual workarounds. For more information see Microsoft’s Security Advisory (955179) and MSRC Blog.

This entry was posted in 2628. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *