Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:20717
HistoryJul 14, 2011 - 12:00 a.m.

Microsoft Visio 2003 "mfc71enu.dll" DLL加载远程代码执行漏洞(MS11-055)

2011-07-1400:00:00
Root
www.seebug.org
12

0.846 High

EPSS

Percentile

98.2%

JSON

BUGTRAQ ID: 42681
CVE ID: CVE-2010-3148

Microsoft Visio是Windows 操作系统下运行的流程图软件,它现在是Microsoft Office软件的一个部分。

Microsoft Visio在实现上存在不安全库加载漏洞,远程攻击者可利用此漏洞控制受影响系统。

此漏洞源于以不安全的方式加载应用程序库(例如mfc71enu.dll和mfc71loc.dll),通过诱使用户打开位于远程WebDAV或SMB共享上的Microsoft Visio Stencil (".vss")文件,造成加载任意库。

Microsoft Visio 2003
厂商补丁:

Microsoft

Microsoft已经为此发布了一个安全公告(MS11-055)以及相应补丁:

MS11-055:Vulnerability in Microsoft Visio Could Allow Remote Code Execution (2560847)

链接:http://www.microsoft.com/technet/security/bulletin/MS11-055.asp

Related

securityvulns 1
prion 1
cvelist 1
checkpoint_advisories 1
openvas 3
nessus 1
cve 1
securityvulns
securityvulns
Microsoft Visio insecure DLL loading
2011-07-13 00:00:00
prion
prion
Design/Logic Flaw
2010-08-27 19:00:00
cvelist
cvelist
CVE-2010-3148
2010-08-27 18:10:00
checkpoint_advisories
checkpoint_advisories
Microsoft Office Visio 2003 mfc71enu.dll Insecure Library Loading (MS11-055; CVE-2010-3148)
2011-07-12 00:00:00
openvas
openvas
Microsoft Visio Remote Code Execution Vulnerability (2560847)
2011-07-13 00:00:00
Microsoft Visio Remote Code Execution Vulnerability (2560847)
2011-07-13 00:00:00
Microsoft Office Products Insecure Library Loading Vulnerability
2015-09-09 00:00:00
nessus
nessus
MS11-055: Vulnerability in Microsoft Visio Could Allow Remote Code Execution (2560847)
2011-07-12 00:00:00
cve
cve
CVE-2010-3148
2010-08-27 19:00:00

0.846 High

EPSS

Percentile

98.2%

JSON
Related for SSV:20717
securityvulns1prion1cvelist1checkpoint_advisories1openvas3nessus1cve1