SB2012071001 - Remote code execution in Microsoft Office
Published: July 10, 2012 Updated: January 10, 2017
Security Bulletin ID
SB2012071001
Severity
Critical
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Untrusted Search Path (CVE-ID: CVE-2012-1854)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.The vulnerability exists due to the way Microsoft Office loads .dll libraries when opening Office documents (such as a .docx file). A remote attacker can place a specially crafted .dll file along with Microsoft Office document on a remote SMB or WebDAV share, trick the victim into opening that document and execute arbitrary code on the target system with privileges of the current user.
Successful exploitation of the vulnerability may allow an attacker to compromise vulnerable system.
Note: the vulnerability was being actively exploited.
Remediation
Install update from vendor's website.