← back
CVE-2016-3235highunder attack

CVE-2016-3235

98Vexday Risk Score

Patch now. It under exploitation confirmed by CISA and has a working public exploit.

ssvc Actcvss 7.8epss 43%
from disclosure to weapon0 days
Published on NVDJun 16
1st PoCDec 8
metasploitDec 8
CISA KEV+1966d
exploitation probability
43%top 1% of all CVEs
observed exploitation
yesCISA + VulnCheck
2 public exploit(s)
Action required by CISAfederal deadline: 2022-05-03

Apply updates per vendor instructions.

In short

Microsoft Visio fails to securely load libraries, allowing an attacker to run malicious code with elevated privileges by placing a crafted file in the same directory as Visio. This is dangerous because it can give attackers full control of your computer.

Technical detail

DLL side-loading vulnerability in Microsoft Visio versions 2007-2016 and Visio Viewer where improper library loading mechanisms allow privilege escalation. Local attacker can exploit this by placing a malicious DLL in the application directory, which gets loaded with the privileges of the Visio process. Impact includes arbitrary code execution with elevated privileges on the affected system.

Summary generated and translated by AI from the official description.
Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability."
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.