4 matches found
Microsoft MFC Insecure Library Loading (CVE-2010-3190)
A remote code execution vulnerability has been reported in Microsoft MFC. The vulnerability is due to an error in the way Microsoft MFC restricts the path used for loading external libraries. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Microsoft MFC Library - CFileFind::FindFile Buffer Overflow
source: https://www.securityfocus.com/bid/25697/info The CFileFind::FindFile method in the MFC library for Microsoft Windows is prone to a buffer-overflow vulnerability because the method fails to perform adequate boundary checks of user-supplied input. Successfully exploiting this issue may allo...
Microsoft MFC Embedded OLE Object Remote Code Execution Vulnerability
Description The Microsoft MFC component for Microsoft Windows and Microsoft Visual Studio .NET is prone to a remote code-execution vulnerability. This issue occurs when the application using the component attempts to parse malformed Rich Text Files RTF. An attacker could exploit this issue by...
MS07-012: Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667)
The remote host contains a version of Microsoft Windows that has a vulnerability in the MFC component that could be abused by an attacker to execute arbitrary code on the remote host. To exploit this vulnerability, an attacker would need to spend a specially crafted RTF file to a user on the remo...