21 matches found
EUVD-2011-2004
Malware in sbrugna...
EUVD-2013-3791
Malware in sbrugna...
Cannot activate Microsoft Pinyin IME in Windows server 2016/2019/2022
Cannot activate Microsoft Pinyin IME in Windows server 2016/2019/2022 VDA if client keyboard layout set “sync only once” mode Following are the details of the error, 1. VDA OS is a Windows server 2016/2019/2022 English version. 2. CWA Windows set the keyboard layout to “Sync only once – when the...
Cannot input Simplified/Traditional Chinese or Japanese in Windows server 2019/2022 or Windows 10/11
For Windows Server 2019/2022 English OS or Windows 10/11 as VDA, CWA Windows Client uses Microsoft Pinyin IME to input simplified Chinese, Microsoft Bopomofo IME to input traditional Chinese, or Microsoft Japanese IME to input Japanese, keyboard sync mode is configured as "Sync only once" in...
MS15-116: Description of the security update for Pinyin IME 2010: November 10, 2015
MS15-116: Description of the security update for Pinyin IME 2010: November 10, 2015 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Microsoft Office file. To learn more about these vulnerabilities...
MS11-088: Description of the security update for Microsoft Pinyin IME 2010 for Microsoft Office 2010 and Microsoft Office 2010 Service Pack 1: December 13, 2011
MS11-088: Description of the security update for Microsoft Pinyin IME 2010 for Microsoft Office 2010 and Microsoft Office 2010 Service Pack 1: December 13, 2011 Introduction Microsoft has released security bulletin MS11-088. To view the complete security bulletin, visit one of the following...
MS13-075: Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege (2878687)
The version of Microsoft Office Input Method Editor Chinese installed on the remote host has a privilege escalation vulnerability. A local attacker could exploit this by utilizing the MSPY IME toolbar in an unspecified manner, resulting in arbitrary code execution in kernel mode. C Tenable Networ...
Microsoft Office Pinyin IME 2010本地权限提升漏洞(CVE-2013-3859)
BUGTRAQ ID: 62181 CVECAN ID: CVE-2013-3859 Microsoft Office Pinyin IME是微软开发的拼音输入方法。 Office 2010 中文版默认安装的MSPY IME(中文)没有正确开放某些配置选项,如果登录攻击者从 Microsoft Pinyin IME 简体中文版的工具栏中启动 Internet Explorer,则该漏洞可能允许特权提升。成功利用此漏洞的攻击者可以运行内核模式中的任意代码。 0 Microsoft Office 2010 Microsoft Pinyin IME 2010 厂商补丁: Microsoft...
CVE-2013-3859
Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet Explorer from the IME toolbar, aka "Chinese IME Vulnerability."...
CVE-2013-3859
Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet Explorer from the IME toolbar, aka "Chinese IME Vulnerability."...
Design/Logic Flaw
Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet Explorer from the IME toolbar, aka "Chinese IME Vulnerability."...
CVE-2013-3859
Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet Explorer from the IME toolbar, aka "Chinese IME Vulnerability."...
CVE-2013-3859
CVE-2013-3859 affects Microsoft Office IME 2010 (Chinese) installed with Office 2010 SP1. A local attacker can escalate privileges by using the MSPY Chinese IME toolbar to start Internet Explorer, leading to kernel-mode arbitrary code execution. Vendors issued MS13-075 with patches; affected prod...
Microsoft Office Pinyin IME 2010 CVE-2013-3859 Local Privilege Escalation Vulnerability
Description Microsoft Office is prone to a local privilege-escalation vulnerability that exists in the Pinyin Input Method Editor IME. A local attacker can exploit this issue to execute arbitrary code with system-level privileges, resulting in a complete compromise of the affected computer...
Microsoft中文输入系统(Pinyin IME)本地权限提升漏洞(MS11-088)
BUGTRAQ ID: 50950 CVE ID: CVE-2011-2010 Microsoft Office IME CN是微软的中文输入系统。 Microsoft Office IME CN错误公开了不能在安全桌面上运行的配置选项,在实现上存在权限提升漏洞,本地攻击者可利用此漏洞以内核权限执行任意代码,成功利用后可完全控制受影响计算机 Microsoft Pinyin IME 2010 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS11-088)以及相应补丁: MS11-088:Vulnerability in Microso...
Privilege escalation
The Microsoft Office Input Method Editor IME for Simplified Chinese in Microsoft Pinyin IME 2010, Office Pinyin SimpleFast Style 2010, and Office Pinyin New Experience Style 2010 does not properly restrict access to configuration options, which allows local users to gain privileges via the...
Microsoft Office IME (Chinese) Privilege Elevation Vulnerability (2652016)
This host is missing an important security update according to Microsoft Bulletin MS11-088. OpenVAS Vulnerability Test $Id: secpodms11-088.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Office IME Chinese Privilege Elevation Vulnerability 2652016 Authors: Antu Sanadi Copyright: Copyright c 2011...
CVE-2011-2010
The CVE-2011-2010 issue affects the Microsoft Office IME (Chinese) for Simplified Chinese in Pinyin IME 2010 family (MSPY), including Office Pinyin SimpleFast Style 2010 and Office Pinyin New Experience Style 2010. The root cause is improper restriction of configuration options in the IME toolbar...
CVE-2011-2010
The Microsoft Office Input Method Editor IME for Simplified Chinese in Microsoft Pinyin IME 2010, Office Pinyin SimpleFast Style 2010, and Office Pinyin New Experience Style 2010 does not properly restrict access to configuration options, which allows local users to gain privileges via the...
MS11-088: Vulnerability in Microsoft Office IME (Chinese) could allow elevation of privilege: December 13, 2011
Resolves security vulnerabilities that exist in Microsoft Office Pinyin IME Chinese that could allow arbitrary code to run when a maliciously modified file is opened.IntroductionMicrosoft has released security bulletin MS11-088. To view the complete security bulletin, visit one of the following...