The security update addresses the vulnerability by correcting the manner in which applications built using MFC load external libraries. For more information, see the subsection, Affected and Non-Affected Software, in this section. This security update is rated Important for all supported editions of Microsoft Visual Studio and Microsoft Visual C++ Redistributable Package. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a document from this location that is then loaded by the affected application. The vulnerability could allow remote code execution if a user opens a legitimate file associated with such an affected application, and the file is located in the same network folder as a specially crafted library file. This security update resolves a publicly disclosed vulnerability in certain applications built using the Microsoft Foundation Class (MFC) Library. Version: 5.0 General Information Executive Summary Security Bulletin Microsoft Security Bulletin MS11-025 - Important Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution (2500212)
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |