VYPR
High severity7.8NVD Advisory· Published Apr 12, 2017· Updated Jun 17, 2026

CVE-2017-0197

CVE-2017-0197

Description

Microsoft OneNote 2007 SP3 and Microsoft OneNote 2010 SP2 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office DLL Loading Vulnerability."

Affected products

4
  • Microsoft/Onenote3 versions
    cpe:2.3:a:microsoft:onenote:2007:sp3:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:onenote:2007:sp3:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:onenote:2010:sp2:*:*:*:*:*:*
    • (no CPE)range: 2007 SP3, 2010 SP2
  • Range: OneNote 2007 SP3 and Microsoft OneNote 2010 SP2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.