Microsoft Visio Insecure Library Loading Vulnerability (CVE-2010-3148)
Gravedad: Crítico
Identificadores de CVE : CVE-2010-3148,MS11-055
Fecha recomendada: 21 de julio de 2015
Descripción
Untrusted search path vulnerability in Microsoft Visio 2003 SP3 allows local users to gain privileges via a Trojan horse mfc71enu.dll file in the current working directory, as demonstrated by a directory that contains a .vsd, .vdx, .vst, or .vtx file, aka "Microsoft Visio Insecure Library Loading Vulnerability."
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1004730
Trend Micro Deep Security DPI Rule Name: 1004730 - Microsoft Visio Insecure Library Loading Vulnerability Over Network Share (CVE-2010-3148)
Software y versión afectados
- microsoft visio 2003