{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T16:27:00.349","vulnerabilities":[{"cve":{"id":"CVE-2011-0107","sourceIdentifier":"secure@microsoft.com","published":"2011-04-13T18:55:01.283","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Untrusted search path vulnerability in Microsoft Office XP SP3, Office 2003 SP3, and Office 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .docx file, aka \"Office Component Insecure Library Loading Vulnerability.\""},{"lang":"es","value":"Vulnerabilidad de búsqueda de ruta no confiable en Microsoft Office XP SP3, Office 2003 SP3 y Office 2007 SP2 permite a usuarios locales conseguir privilegios a través de un troyano DLL en el directorio de trabajo actual, como lo demuestra un directorio que contiene un archivo. docx, también conocida como \"Vulnerabilidad de carga de librería insegura de Office. \""}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*","matchCriteriaId":"A332D04D-CC8C-4F68-A261-BA2F2D8EAD1E"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office:2007:sp2:*:*:*:*:*:*","matchCriteriaId":"08AF794A-435D-4171-9DBB-EB7FAED96DBA"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office:xp:sp3:*:*:*:*:*:*","matchCriteriaId":"79BA1175-7F02-4435-AEA6-1BA8AADEB7EF"}]}]}],"references":[{"url":"http://osvdb.org/71767","source":"secure@microsoft.com"},{"url":"http://secunia.com/advisories/44015","source":"secure@microsoft.com"},{"url":"http://www.fortiguard.com/advisory/FGA-2011-13.html","source":"secure@microsoft.com"},{"url":"http://www.securityfocus.com/bid/47246","source":"secure@microsoft.com"},{"url":"http://www.securitytracker.com/id?1025343","source":"secure@microsoft.com"},{"url":"http://www.us-cert.gov/cas/techalerts/TA11-102A.html","source":"secure@microsoft.com","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2011/0942","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-023","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12655","source":"secure@microsoft.com"},{"url":"http://osvdb.org/71767","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/44015","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.fortiguard.com/advisory/FGA-2011-13.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/47246","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id?1025343","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.us-cert.gov/cas/techalerts/TA11-102A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2011/0942","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-023","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12655","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorComment":"Per: http://cwe.mitre.org/data/definitions/426.html \r\n'CWE-426: Untrusted Search Path'","evaluatorImpact":"Per: http://www.microsoft.com/technet/security/Bulletin/MS11-023.mspx\r\n\r\nAccess Vector: Network per \"This is a remote code execution vulnerability\""}}]}