CVE-2011-0107Improper Access Control in Microsoft Office

CWE-284Improper Access Control8 documents4 sources
Severity
9.3CRITICALNVD
NVD6.9
EPSS
51.7%
top 2.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Attachmate Reflection FOR HPAttachmate Reflection FOR IBMAttachmate Reflection FOR Regis Graphics Server+3 more
Timeline
PublishedApr 13
Latest updateMay 17

Description

Untrusted search path vulnerability in Microsoft Office XP SP3, Office 2003 SP3, and Office 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .docx file, aka "Office Component Insecure Library Loading Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

NVDmicrosoft/office2003, 2007, xp+2
NVDattachmate/reflection14.0, 14.1+1
NVDattachmate/reflection_x14.0, 14.1+1

🔴Vulnerability Details

2
GHSA
GHSA-2x9r-7w9v-hwjw: Untrusted search path vulnerability in Attachmate Reflection before 142022-05-17
GHSA
GHSA-vf94-hmfp-f8r7: Untrusted search path vulnerability in Microsoft Office XP SP3, Office 2003 SP3, and Office 2007 SP2 allows local users to gain privileges via a Troja2022-05-14

📋Vendor Advisories

3
Red Hat
kernel: jbd2: unmapped buffer with _Unwritten or _Delay flags set can lead to DoS2012-01-25
Red Hat
kernel: possible privilege escalation via SG_IO ioctl2011-12-22
Red Hat
kernel: ext4: ext4_ext_insert_extent() kernel oops2011-09-28
CVE-2011-0107 — Improper Access Control in Microsoft | cvebase