Unpatched.ai can make mistakes. Public reports may be added, updated, or removed at any time.
Report ID: 2024-244
An improper input validation issue exists in Microsoft Access, specifically MSACCESS.EXE version 16.0.18025.20140 when opening a specially crafted file. By sending a target the file and convincing them to open it, an attacker could unlikely gain Remote Code Execution (RCE) on the target's computer due to the unpatched issue. However, even if RCE isn't achieved, the crash could result in Denial of Service (DoS) for the target application. In addition, likely due to how Microsoft Access handles recent files, file recovery, and file repair, it is possible the issue could result in a persistent DoS attack, where the application will continue to crash, even after reboot by the target.
ExceptionAddress: 00007ff70ee59df7 (msaccess!AccessLoadString+0x0000000000043047) ExceptionCode: c0000005 (Access violation) ExceptionFlags: 00000000NumberParameters: 2 Parameter[0]: 0000000000000000 Parameter[1]: 0000000000000008Attempt to read from address 0000000000000008Child-SP RetAddr : Args to Child : Call Site00000037`280efe00 00007ff7`0ee44256 : 00007ff7`0ed65801 00007ff7`0f45e9d0 00007ff7`0f456ab0 00000000`00000200 : msaccess!AccessLoadString+0x4304700000037`280f1a00 00007ff7`0ee3c456 : 00000037`280f1ba8 00000000`00000126 00000037`280f1ba8 00000000`0100100a : msaccess!AccessLoadString+0x2d4a600000037`280f1b60 00007ff7`0ee3cb40 : 00000037`280f2a68 00000159`804df860 00000037`280f2a68 00000000`00000009 : msaccess!AccessLoadString+0x256a600000037`280f2a20 00007ff7`0ee43f86 : 00000159`b4ec9f70 00000000`0000000c 00000037`280f5a50 00000000`00000001 : msaccess!AccessLoadString+0x25d9000000037`280f38e0 00007ff7`0ee4340d : 00000000`00000000 00000000`00000000 00000159`e92a2f46 00000000`00000001 : msaccess!AccessLoadString+0x2d1d600000037`280f40a0 00007ff7`0ee3ba62 : 00000000`10000102 00000159`804df860 00000000`00008004 00000000`00000000 : msaccess!AccessLoadString+0x2c65d00000037`280f59a0 00007ff7`0ebf0d0e : 00000159`804df860 00000159`90228fa8 00000159`804df860 00000159`804df860 : msaccess!AccessLoadString+0x24cb200000037`280f5dc0 00007ff7`0ebf0ba1 : 00007ffa`6518423c 00007ffb`27d05f8b 00007ff7`0f0b3cfc 00007ff7`0ee95c7c : msaccess!SizeCallback+0xdb8ee00000037`280f5fb0 00007ff7`0f0bad77 : 00000000`00000000 00000159`e92a2f46 00000037`280f6568 00000000`00000017 : msaccess!SizeCallback+0xdb78100000037`280f6010 00007ff7`0f0bb8a0 : 00000159`804df860 00000000`00000000 00000159`f7220fd0 00000159`804df860 : msaccess!FUniqueIndexTableFieldEx+0xfc24700000037`280f64a0 00007ff7`0f07dc50 : 00000159`804df860 00000037`280f6580 00000000`00000000 00000159`ec758f00 : msaccess!FUniqueIndexTableFieldEx+0xfcd7000000037`280f6530 00007ff7`0f0b0956 : 00000159`f7220fd0 00000000`00008004 00000159`f5c02f40 00000000`00000000 : msaccess!FUniqueIndexTableFieldEx+0xbf12000000037`280f65b0 00007ff7`0ee9536d : 00000159`e92a2f38 00000000`00000000 00000159`8920af90 00000000`ffffffef : msaccess!FUniqueIndexTableFieldEx+0xf1e2600000037`280f6610 00007ffa`651b7504 : 00000000`00000000 00000159`8920af90 00000037`280f6660 00000159`fd59bf90 : msaccess!AccessLoadString+0x7e5bd00000037`280f6640 00007ffa`6516e8b5 : 00000000`00000000 00000000`00000000 00000159`8920ae78 00000000`00000000 : VBE7!CProjitemDocument::LoadDocItem+0x5800000037`280f6680 00007ffa`6531f624 : 00000000`00000000 00000000`00000000 00000159`89118498 00000000`00000001 : VBE7!HostGetBaseClassTypeInfo3+0xf500000037`280f66e0 00007ffa`6531b071 : 00000159`825db9d0 00000037`280f6968 00000037`280f6c60 00000159`b4d40000 : VBE7!IMPMGR::HookUpBaseTypeInfo+0xb800000037`280f6750 00007ffa`6531ad91 : 00000159`825db9d0 00007ffb`00000010 00000159`b4d40000 00000000`00000000 : VBE7!IMPMGR::LoadTypeInfo+0xe500000037`280f6790 00007ffa`6531bbc4 : 00000159`825db9d0 00000000`00000010 00000159`00000000 00000037`280f6868 : VBE7!IMPMGR::GetTypeInfo+0xcd00000037`280f6800 00007ffa`6531c1e1 : 00000159`825db9d0 00007ffb`00000000 00000037`280f6868 00000037`280f6968 : VBE7!IMPMGR::GetCoClassTypeInfoOfBase+0x7800000037`280f6840 00007ffa`6531f3ed : 00000159`825db9d0 00000037`280f69b8 00000037`280f69d0 00000001`00000001 : VBE7!IMPMGR::GetBaseTypeInfoAttribute+0x6500000037`280f6990 00007ffa`652bb8a3 : 00000159`825db9d0 00000159`90220be0 00000037`280f6a90 00000159`fbc08fd0 : VBE7!IMPMGR::Write+0x1f500000037`280f69e0 00007ffa`652c38a5 : 00000159`f5ff6c40 00000159`90220be0 00000159`00000000 00000159`9021cf60 : VBE7!BASIC_TYPEROOT::WriteParts+0x58300000037`280f6aa0 00007ffa`652c3430 : 00000159`f5ff6c40 00000159`90220be0 00000159`00000000 00000037`280f6b08 : VBE7!BASIC_TYPEROOT::WriteToStream+0xe500000037`280f6ae0 00007ffa`65295292 : 00000159`f5ff6c40 00000159`e1058f00 00000037`280f6e40 00000037`280f7198 : VBE7!BASIC_TYPEROOT::Write+0x1b000000037`280f6c20 00007ffa`65294c3a : 00000159`82fd5f80 00000159`e1058f00 00000037`280f000a 00000159`00000001 : VBE7!ExecProj::SaveModule+0x32a00000037`280f7270 00007ffa`6518423c : 00000159`82fd5f80 00000000`00000000 00000037`00000001 00000159`804df860 : VBE7!ExecProj::Save+0x1da00000037`280f78a0 00007ff7`0ee977a8 : 00000159`89112f38 00007ffa`651ae621 00000159`82fc98b0 00000159`89112f38 : VBE7!Project::StgSave+0x13400000037`280f7980 00007ff7`0f0b3cfc : 00000000`00000000 00000000`00000000 00000159`89112f38 00000159`89112f38 : msaccess!AccessLoadString+0x809f800000037`280f79f0 00007ff7`0ee95c7c : 00000159`f5c02f40 00000000`00000000 00000000`00000000 00000000`00000001 : msaccess!FUniqueIndexTableFieldEx+0xf51cc00000037`280f7ac0 00007ff7`0f0b1808 : 00000159`f5c02f70 00000000`80004005 00000159`f5c02f40 00000000`00000000 : msaccess!AccessLoadString+0x7eecc00000037`280f7eb0 00007ff7`0f0b2164 : 00000159`f5c02f40 00000037`280f8000 00000000`00000000 00000159`00000000 : msaccess!FUniqueIndexTableFieldEx+0xf2cd800000037`280f7f60 00007ff7`0f077f3b : 00000000`00000000 00000159`f273afa0 00000000`00000001 00000000`00000001 : msaccess!FUniqueIndexTableFieldEx+0xf363400000037`280f8000 00007ff7`0e90d6f0 : 00000159`c7bb8ec0 00000159`c7bb8ec0 00000159`c7bb8ec0 00000000`00000000 : msaccess!FUniqueIndexTableFieldEx+0xb940b00000037`280f8140 00007ff7`0f185b8f : 00000000`00000000 00000159`c7bb8ec0 00000000`00000000 00000000`00000000 : msaccess!ReleaseAccessIconResource+0x331f000000037`280f8180 00007ff7`0e910a7e : 00000159`c1641d70 00000037`280f8880 00000159`c1641d70 00000000`00000000 : msaccess!OpenHscrEmbedded+0x79b1f00000037`280f8340 00007ff7`0e901de6 : 00000037`280f84f0 00000037`280f8628 00000159`c74c4f80 00000037`280f8628 : msaccess!ReleaseAccessIconResource+0x3657e00000037`280f8490 00007ff7`0eaa6d2e : 00000037`280f8880 00000000`00000000 00000000`00000000 00000000`00000000 : msaccess!ReleaseAccessIconResource+0x278e600000037`280f85b0 00007ff7`0eaa2e71 : 00000037`280fc450 00000000`00000000 00007ffb`27d00000 00000037`280fdd90 : msaccess!MSAU_ErrSortStringArray+0x345ce00000037`280fc3f0 00007ff7`0ea9cbab : 00000000`00000105 00000000`00000000 00000000`00000000 00000000`00000000 : msaccess!MSAU_ErrSortStringArray+0x3071100000037`280fdca0 00007ff7`0eaa374a : 00000000`00000000 00000000`00000000 00000000`00000001 00000000`00000000 : msaccess!MSAU_ErrSortStringArray+0x2a44b00000037`280ff380 00007ff7`0ed6030b : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : msaccess!MSAU_ErrSortStringArray+0x30fea00000037`280ff8a0 00007ff7`0ed6140e : 00000000`00000000 00000000`00000000 00007ff7`00000000 00000000`00000000 : msaccess!GetAccessIntellisenseManager+0x5c8cb00000037`280ffa40 00007ff7`0e8d2612 : 00000000`0000000a 00000000`00000000 00000000`00000000 00000000`00000000 : msaccess!GetAccessIntellisenseManager+0x5d9ce00000037`280ffb10 00007ffb`27a0dbe7 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : msaccess!Ordinal59+0x1261200000037`280ffb50 00007ffb`27d85a4c : 00000000`00000000 00000000`00000000 000004f0`fffffb30 000004d0`fffffb30 : KERNEL32!BaseThreadInitThunk+0x1700000037`280ffb80 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!RtlUserThreadStart+0x2c