CVE-2012-0016
published 2012-03-13CVE-2012-0016: Untrusted search path vulnerability in Microsoft Expression Design; Expression Design SP1; and Expression Design 2, 3, and 4 allows local users to gain…
PriorityP353critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
21.89%
97.3th percentile
Untrusted search path vulnerability in Microsoft Expression Design; Expression Design SP1; and Expression Design 2, 3, and 4 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .xpr or .DESIGN file, aka "Expression Design Insecure Library Loading Vulnerability."
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | expression_design | — | — |
| microsoft | expression_design | — | — |
| microsoft | expression_design | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vp5x-7793-46h5: Untrusted search path vulnerability in Microsoft Expression Design; Expression Design SP1; and Expression Design 2, 3, and 4 allows local users to gai
ghsa_unreviewed·2022-05-04
CVE-2012-0016 [HIGH] GHSA-vp5x-7793-46h5: Untrusted search path vulnerability in Microsoft Expression Design; Expression Design SP1; and Expression Design 2, 3, and 4 allows local users to gai
Untrusted search path vulnerability in Microsoft Expression Design; Expression Design SP1; and Expression Design 2, 3, and 4 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .xpr or .DESIGN file, aka "Expression Design Insecure Library Loading Vulnerability."
Red Hat
libxml2: Heap-based buffer overflow when decoding an entity reference with a long name
vendor_redhat·2012-01-06·CVSS 7.5
CVE-2011-3919 [HIGH] CWE-122 libxml2: Heap-based buffer overflow when decoding an entity reference with a long name
libxml2: Heap-based buffer overflow when decoding an entity reference with a long name
Heap-based buffer overflow in libxml2, as used in Google Chrome before 16.0.912.75, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
Statement: This issue affected the versions of libxml2 as shipped with Red Hat Enterprise Linux 4, 5 and 6 and has been addressed via RHSA-2012:0016, RHSA-2012:0017 and RHSA-2012:0018 respectively.
Red Hat
libxml2 out of bounds read
vendor_redhat·2011-12-13·CVSS 5.0
CVE-2011-3905 [MEDIUM] CWE-125 libxml2 out of bounds read
libxml2 out of bounds read
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Statement: This issue affects the version of libxml2 as shipped with Red Hat Enterprise
Linux 4, 5 and 6 and has been addressed via RHSA-2012:0016, RHSA-2012:0017 and
RHSA-2012:0018 respectively. This issue affects the version of mingw32-libxml2
as shipped with Red Hat Enterprise Linux 6. The Red Hat Security Response Team
has rated this issue as having low security impact. A future update may address
this issue in Red Hat Enterprise Linux 6.
No detection rules found.
Zscaler
Zscaler Protects against Microsoft's Patch Cycle | Round 11
blogs_zscaler·CVSS 9.3
[CRITICAL] Zscaler Protects against Microsoft's Patch Cycle | Round 11
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Bugzilla
CVE-2012-3363 moodle: XXE via Zend library (MSA-13-0016)
bugzilla·2013-03-25·CVSS 9.1
CVE-2012-3363 [CRITICAL] CVE-2012-3363 moodle: XXE via Zend library (MSA-13-0016)
CVE-2012-3363 moodle: XXE via Zend library (MSA-13-0016)
An information disclosure flaw was found in the way XML RPC interface of web services of Moodle, a course management system, performed loading of certain XML files. A remote attacker (valid Moodle user) could use this flaw to obtain sensitive information (certain server files).
References:
[1] http://www.openwall.com/lists/oss-security/2013/03/25/2
Relevant upstream patch:
[2] http://git.moodle.org/gw?p=moodle.git;a=commit;h=dfe203c12e4fdb4696b59928f90bb06cb1d8b9a7
Discussion:
This issue affects the versions of the moodle package, as shipped with Fedora release of 18, 17, and Fedora EPEL-6. Please schedule an update.
--
This issue did NOT affect the version of the moodle package, as shipped with Fedora EPEL-5.
---
Created mo
http://www.us-cert.gov/cas/techalerts/TA12-073A.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-022https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14973http://www.us-cert.gov/cas/techalerts/TA12-073A.htmlhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-022https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14973
2012-03-13
Published