The security vendor 0patch has released an unofficial fix for a zero-day vulnerability in Microsoft Access. The hotline, which has been open to the public since November 9th, makes it possible to view confidential, unlawful data in the form of NTLM tokens from Windows users. Discovered was the odd behavior of Check Point Software researchers.
As you can see, the Microsoft Databank has a feature that lets other Office applications from Microsoft establish a connection to tables on a distant SQL server. However, an attacker may abuse this function to force a victim’s Windows system to authenticate itself to a server under his control, while depending on system configuration, the victim’s NTLM hashes would be transmitted.