|
|
|||
| Rule General Information |
|---|
| Release Date: | 2018-07-23 | |
| Rule Name: | Microsoft Office Chinese Grammar Checker Insecure Library Loading Vulnerability -3 (CVE-2014-1756) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Untrusted search path vulnerability in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013 Gold, SP1, RT, and RT SP1, when the Simplified Chinese Proofing Tool is enabled, allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Microsoft Office Chinese Grammar Checking Vulnerability." | |
| Impact: | An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows | |
| Reference: | MicrosoftSecurityBulletin:MS14-023 |
|
| Solutions |
|---|
| Microsoft has released a patch MS14-023 to eliminate the vulnerability. The patch can be downloaded at: http://technet.microsoft.com/security/bulletin/MS14-023 |