Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2012-0158

KEV EPSS 94.30% · P100
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-0158

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The (1) ListView, (2) ListView2, (3) TreeView, and (4) TreeView2 ActiveX controls in MSCOMCTL.OCX in the Common Controls in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2003 Web Components SP3; SQL Server 2000 SP4, 2005 SP4, and 2008 SP2, SP3, and R2; BizTalk Server 2002 SP1; Commerce Server 2002 SP4, 2007 SP2, and 2009 Gold and R2; Visual FoxPro 8.0 SP1 and 9.0 SP2; and Visual Basic 6.0 Runtime allow remote attackers to execute arbitrary code via a crafted (a) web site, (b) Office document, or (c) .rtf file that triggers "system state" corruption, as exploited in the wild in April 2012, aka "MSCOMCTL.OCX RCE Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Office安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Office是美国微软(Microsoft)公司开发的一款办公软件套件产品。常用组件有Word、Excel、Access、Powerpoint、FrontPage等。 Microsoft Office 2003 SP3版本、2007 SP2版本和SP3版本、 2010 Gold版本和SP1版本, Office 2003 Web Components SP3版本,SQL Server 2000 SP4版本、2005 SP4版本和2008 SP2版本、SP3版本和R2版本, BizTalk
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2012-0158

#POC DescriptionSource LinkShenlong Link
1the name of virus is the detection of microsoft defender, is the tipic antivirushttps://github.com/RobertoLeonFR-ES/Exploit-Win32.CVE-2012-0158.F.docPOC Details
2CVE-2012-0158复现https://github.com/Sunqiz/CVE-2012-0158-reproductionPOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2012-0158

登录查看更多情报信息。

Same Patch Batch · n/a · 2012-04-10 · 16 CVEs total

CVE-2012-0774Adobe Reader/Acrobat整数溢出漏洞
CVE-2012-0775Adobe Reader/Acrobat拒绝服务漏洞
CVE-2012-0776Adobe Reader安全绕过漏洞
CVE-2012-0777Adobe Reader/Acrobat拒绝服务漏洞
CVE-2012-0146Microsoft Forefront UAG开放重定向漏洞
CVE-2012-0147Microsoft Forefront UAG敏感信息泄露漏洞
CVE-2012-0151Microsoft Windows远程代码执行漏洞
CVE-2012-0163Microsoft .NET Framework参数验证远程代码执行漏洞
CVE-2012-0168Microsoft Internet Explorer 打印特性远程代码执行漏洞
CVE-2012-0169Microsoft Internet Explorer JScript9 远程代码执行漏洞
CVE-2012-0170Microsoft Internet Explorer 远程代码执行漏洞
CVE-2012-0171Microsoft Internet Explorer SelectAll远程代码执行漏洞
CVE-2012-0172Microsoft Internet Explorer VML样式远程代码执行漏洞
CVE-2012-0177Microsoft Office Works文件转换器缓冲区溢出漏洞
CVE-2012-1182Samba任意代码执行漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2012-0158

No comments yet

Leave a comment