Oval Definition:	oval:org.mitre.oval:def:24582
Revision Date: 2014-09-22 Version: 17 Title: Microsoft Office chinese grammar checking vulnerability (CVE-2014-1756) - MS14-023 Description: Untrusted search path vulnerability in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013 Gold, SP1, RT, and RT SP1, when the Simplified Chinese Proofing Tool is enabled, allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .docx file, aka "Microsoft Office Chinese Grammar Checking Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2014-1756 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Vista Microsoft Windows XP Product(s): Microsoft Office 2013 Definition Synopsis Office 2013 Office 2013 x86/64 Microsoft Office 2013 SP1 x64 is installed OR Microsoft Office 2013 SP1 x86 is installed OR Microsoft Office 2013 is installed AND Check if the version of Msgr3en.dll is less than 15.0.4454.1000 AND Check if Chinese(simplified) language pack for Microsoft office 2013 is installed OR Office 2010 Office 2010 SP1/SP2 Microsoft Office 2010 SP2 is installed OR Microsoft Office 2010 SP1 is installed AND Check if the version of Msgr3en.dll is less than 3.1.0.17519 AND Check if Chinese(simplified) language pack for Microsoft Office 2010 is installed
BACK