Lucene search
KdotZDI-22-384HistoryFeb 18, 2022 - 12:00 a.m.
Microsoft Office Visio EMF EMR_DELETEOBJECT Use-After-Free Remote Code Execution Vulnerability
2022-02-1800:00:00
kdot
www.zerodayinitiative.com
16
microsoft office visio
emf
emr_deleteobject
use-after-free
remote code execution
vulnerability
user interaction
malicious page
malicious file
object validation
current process
EPSS
0.172
Percentile
96.2%
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Visio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of EMR_DELETEOBJECT records in EMF images. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process.
Related
mscve
mscve
Microsoft Office Visio Remote Code Execution Vulnerability
2022-02-08 08:00:00
cvelist
cvelist
CVE-2022-21988 Microsoft Office Visio Remote Code Execution Vulnerability
2022-02-09 16:36:35
nvd
nvd
CVE-2022-21988
2022-02-09 17:15:09
prion
prion
Remote code execution
2022-02-09 17:15:00
cve
cve
CVE-2022-21988
2022-02-09 17:15:09
nessus
nessus
Security Updates for Microsoft Office Products C2R (February 2022)
2022-06-10 00:00:00
Security Updates for Microsoft Office Products (February 2022)
2022-02-08 00:00:00
openvas
openvas
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Feb 2022)
2022-02-09 00:00:00
kaspersky
kaspersky
KLA12454 Multiple vulnerabilities in Microsoft Office
2022-02-08 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2022
2022-02-08 20:43:40