{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Expression Design 4.","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Expression Design 3 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Expression Design et Microsoft Expression Design Service Pack 1 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Expression Design 2 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 de type \u00abbinary planting\u00bb a \u00e9t\u00e9 corrig\u00e9e dans\nMicrosoft Expression Design. Cette vuln\u00e9rabilit\u00e9 peut permettre\nl'ex\u00e9cution de code arbitraire \u00e0 distance dans le contexte de\nl'utilisateur utilisant Microsoft Expression Design. La vuln\u00e9rabilit\u00e9\nsera d\u00e9clench\u00e9e lors de l'ouverture d'un fichier d'extension .Design\ndepuis un r\u00e9pertoire non s\u00e9curis\u00e9.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2012-0016","url":"https://www.cve.org/CVERecord?id=CVE-2012-0016"}],"links":[],"reference":"CERTA-2012-AVI-140","revisions":[{"description":"version initiale.","revision_date":"2012-03-14T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 dans <span class=\"textit\">Microsoft Expression\nDesign</span> peut permettre l'ex\u00e9cution de code arbitraire \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9 dans Microsoft Expression Design","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS12-022","url":"http://technet.microsoft.com/en-us/security/bulletin/MS12-022"}]}