Design/Logic Flaw

2014-05-1411:13:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

45.0%

JSON

Untrusted search path vulnerability in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013 Gold, SP1, RT, and RT SP1, when the Simplified Chinese Proofing Tool is enabled, allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .docx file, aka “Microsoft Office Chinese Grammar Checking Vulnerability.”

CPENameOperatorVersion
officeeq2013
officeeq2010 sp1-x86
officeeq2007 sp3
officeeq2010 sp2-x64
officeeq2013 sp1
officeeq2010 sp1-x64
officeeq2010 sp2-x86