CVE-2018-8393

Name of the Vulnerable Software and Affected Versions Microsoft JET Database Engine (affected versions not specified) Windows 7 Windows Server 2012 R2 Windows RT 8.1 Windows Server 2008 Windows Server 2012 Windows 8.1 Windows Server 2016 Windows Server 2008 R2 Windows 10 Windows 10 Servers

Description A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. The vulnerability is caused by a buffer overflow in memory and can be exploited by using a specially crafted Excel file, allowing an attacker to execute arbitrary code. This issue affects various Windows operating systems.

Recommendations For Windows 7, consider applying security updates or patches to resolve the issue. For Windows Server 2012 R2, apply the latest security updates to fix the vulnerability. For Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, and Windows 10 Servers, update to the latest version or apply the relevant security patch to mitigate the risk. As a temporary workaround, consider restricting access to specially crafted Excel files until a patch is available. Avoid using the vulnerable Microsoft JET Database Engine until the issue is resolved.