CVE-2011-0977
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2011-0977
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Use-after-free vulnerability in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via malformed shape data in the Office drawing file format, aka "Microsoft Office Graphic Object Dereferencing Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Excel图片对象解引用漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Excel是美国微软(Microsoft)公司Office套件中的一款电子表格处理软件。 在解析特制Office文件时,Microsoft Excel中存在图片对象解引用漏洞。远程攻击者可借助Office图层文件格式中的畸形数据完全控制受影响系统,可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2011-0977
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2011-0977
Please Login to view more intelligence information
- http://zerodayinitiative.com/advisories/ZDI-11-043/x_refsource_MISC
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-023vendor-advisoryx_refsource_MS
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12339vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2011-0977
Same Patch Batch · n/a · 2011-02-10 · 95 CVEs total
| CVE-2010-4196 | Adobe Shockwave Player Shockwave 3d Asset模块输入验证漏洞 | |
| CVE-2010-4193 | Adobe Shockwave Player任意代码执行漏洞 | |
| CVE-2010-4191 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2010-4187 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2010-4093 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2010-2589 | Adobe Shockwave Player dirapi.dll模块整数溢出漏洞 | |
| CVE-2010-2588 | Adobe Shockwave Player dirapi.dll模块缓冲区溢出漏洞 | |
| CVE-2010-2587 | Adobe Shockwave Player dirapi.dll模块缓冲区溢出漏洞 | |
| CVE-2010-4188 | Adobe Shockwave Player dirapi.dll模块缓冲区溢出漏洞 | |
| CVE-2010-4195 | Adobe Shockwave Player TextXtra模块输入验证漏洞 | |
| CVE-2010-4194 | Adobe Shockwave Player输入验证漏洞 | |
| CVE-2010-4306 | Adobe Shockwave Player输入验证漏洞 | |
| CVE-2010-4307 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2011-0033 | Microsoft Windows多个平台OpenType字体编码字符漏洞 | |
| CVE-2011-0035 | Microsoft Internet Explorer内存远程代码执行漏洞 | |
| CVE-2011-0036 | Microsoft Internet Explorer mshtml.dll库任意代码执行漏洞 | |
| CVE-2011-0038 | Microsoft Internet Explorer不可信搜索路径漏洞 | |
| CVE-2011-0043 | Microsoft Windows多个平台Kerberos非密钥校验漏洞 | |
| CVE-2011-0091 | Microsoft Windows多个平台Kerberos敏感信息泄露漏洞 | |
| CVE-2011-0092 | Microsoft Visio对象内存破坏漏洞 |
Showing top 20 of 95 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem - CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin
V. Comments for CVE-2011-0977
No comments yet