Summary
Detail | |||
---|---|---|---|
Vendor | Microsoft | First view | 2012-03-13 |
Product | Expression Design | Last view | 2012-03-13 |
Version | - | Type | |
Update | sp1 | ||
Edition | |||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
Related : CVE
Date | Alert | Description | |
---|---|---|---|
9.3 | 2012-03-13 | CVE-2012-0016 | Untrusted search path vulnerability in Microsoft Expression Design; Expression Design SP1; and Expression Design 2, 3, and 4 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .xpr or .DESIGN file, aka "Expression Design Insecure Library Loading Vulnerability." |
Oval Markup Language : Definitions
OvalID | Name |
---|---|
oval:org.mitre.oval:def:14973 | Expression Design Insecure Library Loading Vulnerability |
SAINT Exploits
Description | Link |
---|---|
Microsoft Expression Design wintab32.dll Library Loading | More info here |
OpenVAS Exploits
id | Description |
---|---|
2012-03-14 | Name : Microsoft Expression Design Remote Code Execution Vulnerability (2651018) File : nvt/secpod_ms12-022.nasl |
Information Assurance Vulnerability Management (IAVM)
id | Description |
---|---|
2012-A-0038 | Microsoft Expression Design Remote Code Execution Vulnerability Severity: Category II - VMSKEY: V0031884 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Expression Design wintab32.dll dll-load exploit attempt RuleID : 21567 - Type : OS-WINDOWS - Revision : 7 |
2014-01-10 | Microsoft Expression Design request for wintab32.dll over SMB attempt RuleID : 21566 - Type : OS-WINDOWS - Revision : 11 |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2012-03-13 | Name: The Microsoft Expression Design install on the remote Windows host could allo... File: smb_nt_ms12-022.nasl - Type: ACT_GATHER_INFO |