CVE-2012-0158 is a high severity vulnerability with a CVSS score of 8.8. Exploits are available; patches have been released and should be applied urgently. This is classified as a zero-day vulnerability.
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
Very high probability of exploitation in the next 30 days
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
Microsoft MSCOMCTL.OCX contains an unspecified vulnerability that allows for remote code execution, allowing an attacker to take complete control of an affected system under the context of the current user.
| Vendor | Product |
|---|---|
| Microsoft | Office |
| Microsoft | Visual Foxpro |
| Microsoft | SQL Server 2008 |
| Microsoft | Commerce Server |
| Microsoft | Biztalk Server |
| Microsoft | Commerce Server 2009 |
| Microsoft | SQL Server 2005 |
| Microsoft | Visual Basic |
| Microsoft | SQL Server 2000 |
| Microsoft | Office Web Components |