THREATOPS
THREAT OPSCVEs › CVE-2016-3235

CVE-2016-3235 — Microsoft Office OLE DLL Side Loading Vulnerability

CISA KEVExploited: confirmedMicrosoft

Microsoft Office Object Linking & Embedding (OLE) dynamic link library (DLL) contains a side loading vulnerability due to it improperly validating input before loading libraries. Successful exploitation allows for remote code execution.

Vulnerability details