VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Dec 14, 2011· Updated Apr 29, 2026

CVE-2011-2010

CVE-2011-2010

Description

The Microsoft Office Input Method Editor (IME) for Simplified Chinese in Microsoft Pinyin IME 2010, Office Pinyin SimpleFast Style 2010, and Office Pinyin New Experience Style 2010 does not properly restrict access to configuration options, which allows local users to gain privileges via the Microsoft Pinyin (aka MSPY) IME toolbar, aka "Pinyin IME Elevation Vulnerability."

Affected products

6
  • Microsoft/Pinyin Ime2 versions
    cpe:2.3:a:microsoft:pinyin_ime:2010:*:x64:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:pinyin_ime:2010:*:x64:*:*:*:*:*
    • cpe:2.3:a:microsoft:pinyin_ime:2010:*:x86:*:*:*:*:*
  • Microsoft/Pinyin New Experience Style2 versions
    cpe:2.3:a:microsoft:pinyin_new_experience_style:2010:*:x64:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:pinyin_new_experience_style:2010:*:x64:*:*:*:*:*
    • cpe:2.3:a:microsoft:pinyin_new_experience_style:2010:*:x86:*:*:*:*:*
  • Microsoft/Pinyin Simple Fast Style2 versions
    cpe:2.3:a:microsoft:pinyin_simple_fast_style:2010:*:x64:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:pinyin_simple_fast_style:2010:*:x64:*:*:*:*:*
    • cpe:2.3:a:microsoft:pinyin_simple_fast_style:2010:*:x86:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.