CVSS: 9.3EPSS: 31%CPEs: 44EXPL: 0CVE-2015-2503
https://notcve.org/view.php?id=CVE-2015-2503
11 Nov 2015 — Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publisher 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2007 IME (Japanese) SP3, Access 2010 SP2, Excel 2010 SP2, InfoPath 2010 SP2, OneNote 2010 SP2, PowerPoint 2010 SP2, Project 2010 SP2, Publisher 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Pinyin IME 2010, Access 2013 SP1, Excel 2013 SP1, InfoPath 2013 SP1, OneNote 2013 SP1, PowerPoint 2013 SP1, Project 2013 SP1, Publisher 2013 SP1, Visi... • http://www.securitytracker.com/id/1034117 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2013-3859
https://notcve.org/view.php?id=CVE-2013-3859
11 Sep 2013 — Microsoft Pinyin IME 2010, when used in conjunction with Microsoft Office 2010 SP1, does not properly restrict configuration options, which allows local users to gain privileges by starting Internet Explorer from the IME toolbar, aka "Chinese IME Vulnerability." Microsoft Pinyin IME 2010, cuando es utilizado en conjunto con Microsoft Office 2010 SP1, no restringe las opciones de configuración apropiadamente, lo que permite a usuarios locales conseguir privilegios arrancando Internet Explorer desde la barra ... • http://www.us-cert.gov/ncas/alerts/TA13-253A • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2011-2010
https://notcve.org/view.php?id=CVE-2011-2010
14 Dec 2011 — The Microsoft Office Input Method Editor (IME) for Simplified Chinese in Microsoft Pinyin IME 2010, Office Pinyin SimpleFast Style 2010, and Office Pinyin New Experience Style 2010 does not properly restrict access to configuration options, which allows local users to gain privileges via the Microsoft Pinyin (aka MSPY) IME toolbar, aka "Pinyin IME Elevation Vulnerability." Microsoft Office Input Method Editor (IME) de chino simplificado de Microsoft Pinyin IME 2010, Office Pinyin SimpleFast Style 2010, y Of... • http://www.us-cert.gov/cas/techalerts/TA11-347A.html • CWE-264: Permissions, Privileges, and Access Controls •