Microsoft fixed the Zero-Day for JET flaw, but the fix is incomplete

Microsoft fixed the Zero-Day for JET flaw, but the fix is incomplete Experts from 0Patch revealed that the Microsoft Zero-Day Patch for JET Database Engine vulnerability (CVE-2018-8423) is incomplete. The vulnerability was discovered by the researcher Lucas Leong of the Trend Micro Security Research team that publicly disclosed an unpatched zero-day vulnerability in all supported versions of Microsoft Windows. The flaw is an out-of-bounds (OOB) write in the JET Database Engine that […] The post Microsoft fixed the Zero-Day for JET flaw, but the fix is incomplete appeared first on Security Affairs. Read More At -> https://blog.cripperz.sg/2018/10/15/microsoft-fixed-the-zero-day-for-jet-flaw-but-the-fix-is-incomplete/