MS12-046: Vulnerability in Visual Basic for Applications Could Allow Remote Code Execution (2707960)
High Nessus Plugin ID 59909
SynopsisArbitrary code can be executed on the remote host through Visual Basic for Applications.
DescriptionThe version of Visual Basic for Applications installed on the remote host is affected by an insecure library loading vulnerability.
A remote attacker could exploit this flaw by tricking a user into opening a legitimate Microsoft Office file located in the same directory as a maliciously crafted dynamic link library (DLL) file, resulting in arbitrary code execution.
Note that if an affected copy of VBE6.DLL was installed by a third- party application, it may be necessary to contact that application's vendor for an update.
SolutionMicrosoft has released a set of patches for Office as well as Visual Basic for Applications Runtime and SDK.