Lucene search
K

3 matches found

Tenable Nessus
Tenable Nessus
added 2013/09/17 12:0 a.m.25 views

MS13-075: Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege (2878687)

The version of Microsoft Office Input Method Editor Chinese installed on the remote host has a privilege escalation vulnerability. A local attacker could exploit this by utilizing the MSPY IME toolbar in an unspecified manner, resulting in arbitrary code execution in kernel mode. C Tenable Networ...

6.9CVSS6.3AI score0.01651EPSS
Exploits1References2
seebug.org
seebug.org
added 2013/09/14 12:0 a.m.29 views

Microsoft Office Pinyin IME 2010本地权限提升漏洞(CVE-2013-3859)

BUGTRAQ ID: 62181 CVECAN ID: CVE-2013-3859 Microsoft Office Pinyin IME是微软开发的拼音输入方法。 Office 2010 中文版默认安装的MSPY IME(中文)没有正确开放某些配置选项,如果登录攻击者从 Microsoft Pinyin IME 简体中文版的工具栏中启动 Internet Explorer,则该漏洞可能允许特权提升。成功利用此漏洞的攻击者可以运行内核模式中的任意代码。 0 Microsoft Office 2010 Microsoft Pinyin IME 2010 厂商补丁: Microsoft...

6.9CVSS6.3AI score0.01651EPSS
Exploits1
CVE
CVE
added 2013/09/11 10:0 a.m.50 views

CVE-2013-3859

CVE-2013-3859 affects Microsoft Office IME 2010 (Chinese) installed with Office 2010 SP1. A local attacker can escalate privileges by using the MSPY Chinese IME toolbar to start Internet Explorer, leading to kernel-mode arbitrary code execution. Vendors issued MS13-075 with patches; affected prod...

6.9CVSS6.5AI score0.01651EPSS
Exploits1References2Affected Software2
Rows per page
Query Builder