CVE-2016-3235
CVE-2016-3235
In short
Microsoft Visio fails to securely load libraries, allowing an attacker to run malicious code with elevated privileges by placing a crafted file in the same directory as Visio. This is dangerous because it can give attackers full control of your computer.
Technical detail
DLL side-loading vulnerability in Microsoft Visio versions 2007-2016 and Visio Viewer where improper library loading mechanisms allow privilege escalation. Local attacker can exploit this by placing a malicious DLL in the application directory, which gets loaded with the privileges of the Visio process. Impact includes arbitrary code execution with elevated privileges on the affected system.
Summary generated and translated by AI from the official description.
Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability."
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/137490/Microsoft-Visio-DLL-Hijacking.htmlunverifiedexploitdbwww.exploit-db.com/exploits/41706unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/137490/Microsoft-Visio-DLL-Hijacking.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-070http://seclists.org/fulldisclosure/2016/Jun/32https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-3235https://www.securify.nl/advisory/SFY20150804/microsoft_visio_multiple_dll_side_loading_vulnerabilities.htmlhttp://www.securityfocus.com/archive/1/538685/100/0/threadedhttp://www.securitytracker.com/id/1036093