Microsoft Office IME (Chinese) Elevation of Privilege Vulnerability

Last Update Date: 14 Dec 2011 12:27 Release Date: 14 Dec 2011 5380 Views

RISK: High Risk

High Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

An elevation of privilege vulnerability exists due to the way that the Microsoft Office IME (Chinese) improperly exposes configuration options not designed to run on the secure desktop. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.

Impact

  • Elevation of Privilege

System / Technologies affected

  • Microsoft Office 2010
  • Microsoft Office Pinyin SimpleFast Style 2010
  • Microsoft Office Pinyin New Experience Style 2010

Solutions

 Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Microsoft Windows Media Remote Code Execution Vulnerability

14 Dec 2011 5282 Views

Next

Microsoft Windows OLE32 Remote Code Execution Vulnerability

14 Dec 2011 5290 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY