Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Untrusted search path vulnerability in Microsoft Office 2003 SP3 and 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .doc, .ppt, or .xls file, aka "Office Component Insecure Library Loading Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Office共享组件DLL加载不可信搜索路径漏洞
Vulnerability Description
Microsoft Office是美国微软(Microsoft)公司开发的一款办公软件套件产品。常用组件有Word、Excel、Access、Powerpoint、FrontPage等。 Microsoft Office 2003 SP3和2007 SP2版本的共享组件中存在不可信搜索路径漏洞。该漏洞源于MSO.DLL在试图验证一个打开的文件时,以不安全的方式加载库(如“.dll”),远程攻击者可通过欺骗用户打开远程WebDAV或SMBPPT共享上的PPT文件来加载任意库,可随后安装程序;查看、更改或删除
CVSS Information
N/A
Vulnerability Type
N/A