Microsoft MFC Embedded OLE Object Remote Code Execution Vulnerability

Microsoft MFC Embedded OLE Object Remote Code Execution Vulnerability

The Microsoft MFC component for Microsoft Windows and Microsoft Visual Studio .NET is prone to a remote code-execution vulnerability. This issue occurs when the application using the component attempts to parse malformed Rich Text Files (RTF).

An attacker could exploit this issue by enticing a victim to load a malicious RTF file. A successful exploit could result in the execution of arbitrary code in the context of the currently logged-in user.