This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2012-03-13 |
| Product | Expression Design | Last view | 2012-03-13 |
| Version | - | Type | |
| Update | sp1 | ||
| Edition | |||
| Language | |||
| Sofware Edition | |||
| Target Software | |||
| Target Hardware | |||
| Other | |||
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 9.3 | 2012-03-13 | CVE-2012-0016 | Untrusted search path vulnerability in Microsoft Expression Design; Expression Design SP1; and Expression Design 2, 3, and 4 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .xpr or .DESIGN file, aka "Expression Design Insecure Library Loading Vulnerability." |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:14973 | Expression Design Insecure Library Loading Vulnerability |
SAINT Exploits
| Description | Link |
|---|---|
| Microsoft Expression Design wintab32.dll Library Loading | More info here |
OpenVAS Exploits
| id | Description |
|---|---|
| 2012-03-14 | Name : Microsoft Expression Design Remote Code Execution Vulnerability (2651018) File : nvt/secpod_ms12-022.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2012-A-0038 | Microsoft Expression Design Remote Code Execution Vulnerability Severity: Category II - VMSKEY: V0031884 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Microsoft Expression Design wintab32.dll dll-load exploit attempt RuleID : 21567 - Type : OS-WINDOWS - Revision : 7 |
| 2014-01-10 | Microsoft Expression Design request for wintab32.dll over SMB attempt RuleID : 21566 - Type : OS-WINDOWS - Revision : 11 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2012-03-13 | Name: The Microsoft Expression Design install on the remote Windows host could allo... File: smb_nt_ms12-022.nasl - Type: ACT_GATHER_INFO |
