(MS12-046) Vulnerability in Visual Basic for Applications Could Allow Remote Code Execution (2707960)
Publish Date: 11 Juli 2012
Schweregrad:: Hoch
CVE Kennungen:: CVE-2012-1854
Hinweisdatum: 11 Juli 2012
Beschreibung
This update resolves the vulnerability that exists in the handling of DLL files in Microsoft Visual Basic for Applications. Attackers exploiting this vulnerability must convince potential targets to open a specially crafted MS Office file. Currently logged on users who have lesser administrator privileges are less impacted by effects of an exploit.
Lösungen
Betroffene Software und Version:
- Microsoft Office 2003 Service Pack 3
- Microsoft Office 2007 Service Pack 2
- Microsoft Office 2007 Service Pack 3
- Microsoft Office 2010 (32-bit editions)
- Microsoft Office 2010 Service Pack 1 (32-bit editions)
- Microsoft Office 2010 (64-bit editions)
- Microsoft Office 2010 Service Pack 1 (64-bit editions)
- Microsoft Visual Basic for Applications