Vulnerability Details CVE-2011-1243
The Windows Messenger ActiveX control in msgsc.dll in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via unspecified vectors that "corrupt the system state," aka "Microsoft Windows Messenger ActiveX Control Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.45
EPSS Ranking 97.4%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/71788
- http://secunia.com/advisories/44159
- http://www.securityfocus.com/bid/47197
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-027
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12524
- http://osvdb.org/71788
- http://secunia.com/advisories/44159
- http://www.securityfocus.com/bid/47197
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-027
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12524
Products affected by CVE-2011-1243
-
cpe:2.3:o:microsoft:windows_xp:-
-
cpe:2.3:o:microsoft:windows_xp:unknown