Lucene search
MicrosoftCVELIST:CVE-2012-1854HistoryJul 10, 2012 - 9:00 p.m.
CVE-2012-1854
2012-07-1021:00:00
microsoft
www.cve.org
5
Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications (VBA); and Summit Microsoft Visual Basic for Applications SDK allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .docx file, aka “Visual Basic for Applications Insecure Library Loading Vulnerability,” as exploited in the wild in July 2012.
Related
cve
cve
CVE-2012-1854
2012-07-10 21:55:05
mskb
mskb
prion
prion
Design/Logic Flaw
2012-07-10 21:55:00
nvd
nvd
CVE-2012-1854
2012-07-10 21:55:05
openvas
openvas
Visual Basic for Applications Remote Code Execution Vulnerability (2707960)
2012-07-11 00:00:00
Visual Basic for Applications Remote Code Execution Vulnerability (2707960)
2012-07-11 00:00:00
checkpoint_advisories
checkpoint_advisories
nessus
nessus
securityvulns
securityvulns
Microsoft Office security vulnerabilities
2012-07-11 00:00:00