Untrusted Search Path Vulnerability in Microsoft Excel: Remote Code Execution via Trojan Horse DLL

CVE-2015-2378 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

Untrusted search path vulnerability in Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel Viewer 2007 SP3, and Office Compatibility Pack SP3 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Microsoft Excel DLL Remote Code Execution Vulnerability."

Learn more about our Cis Benchmark Audit For Microsoft Office.