CVE-2014-4077

Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Office 2007 SP3, when IMJPDCT.EXE (aka IME for Japanese) is installed, allow remote attackers to bypass a sandbox protection mechanism via a crafted PDF document, aka "Microsoft IME (Japanese) Elevation of Privilege Vulnerability," as exploited in the wild in 2014.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://blogs.technet.com/b/srd/archive/2014/11/11/assessing-risk-for-the-november-2014-security-updates.aspx	Vendor Advisory
http://www.securitytracker.com/id/1031196
http://www.securitytracker.com/id/1031197
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-078

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:office:2007:sp3:::ime:::*
	cpe:2.3:o:microsoft:windows_7::sp1:::::x64:
	cpe:2.3:o:microsoft:windows_7::sp1:::::x86:
	cpe:2.3:o:microsoft:windows_server_2003::sp2:::::itanium:
	cpe:2.3:o:microsoft:windows_server_2003::sp2:::::x64:
	cpe:2.3:o:microsoft:windows_server_2003::sp2:::::x86:
	cpe:2.3:o:microsoft:windows_server_2008::sp2:::::itanium:
	cpe:2.3:o:microsoft:windows_server_2008::sp2:::::x64:
	cpe:2.3:o:microsoft:windows_server_2008::sp2:::::x86:
	cpe:2.3:o:microsoft:windows_server_2008::sp2:server_core::::x86:*
	cpe:2.3:o:microsoft:windows_server_2008::sp2:server_core:::x64::*
	cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:::::itanium:*
	cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:::::x64:*
	cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:server_core::::itanium:
	cpe:2.3:o:microsoft:windows_vista::sp2:::::x64:
	cpe:2.3:o:microsoft:windows_vista::sp2:::::x86:

History

No history.

Information

Published : 2014-11-11 22:55

Updated : 2023-12-10 11:31

NVD link : CVE-2014-4077

Mitre link : CVE-2014-4077

CVE.ORG link : CVE-2014-4077

JSON object : View

Products Affected

microsoft

office
windows_vista
windows_server_2003
windows_7
windows_server_2008

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2014-4077", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-11-11T22:55:04.637", "references": [{"url": "http://blogs.technet.com/b/srd/archive/2014/11/11/assessing-risk-for-the-november-2014-security-updates.aspx", "tags": ["Vendor Advisory"], "source": "secure@microsoft.com"}, {"url": "http://www.securitytracker.com/id/1031196", "source": "secure@microsoft.com"}, {"url": "http://www.securitytracker.com/id/1031197", "source": "secure@microsoft.com"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-078", "source": "secure@microsoft.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Office 2007 SP3, when IMJPDCT.EXE (aka IME for Japanese) is installed, allow remote attackers to bypass a sandbox protection mechanism via a crafted PDF document, aka \"Microsoft IME (Japanese) Elevation of Privilege Vulnerability,\" as exploited in the wild in 2014."}, {"lang": "es", "value": "Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Windows 7 SP1, y Office 2007 SP3, cuando IMJPDCT.EXE (tambi\u00e9n conocido como IME para japon\u00e9s) est\u00e1 instalado, permiten a atacantes remotos evadir un mecanismo de protecci\u00f3n sandbox a trav\u00e9s de un documento PDF manipulado, tambi\u00e9n conocido como 'vulnerabilidad de la elevaci\u00f3n de privilegios de Microsoft IME (japon\u00e9s),' tal y como fue utilizado activamente en 2014."}], "lastModified": "2018-10-12T22:07:00.957", "cisaActionDue": "2022-06-15", "cisaExploitAdd": "2022-05-25", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:office:2007:sp3:*:*:ime:*:*:*", "vulnerable": true, "matchCriteriaId": "0D1B3336-5BF8-4FE9-9F59-2D675C5093D6"}, {"criteria": "cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "F0931768-A4BD-4B42-840D-B098D504ECFE"}, {"criteria": "cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "198E2CF9-D9F6-45BC-92DC-3D06B398B741"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:itanium:*", "vulnerable": true, "matchCriteriaId": "6DD5B2D3-AF03-4811-8C44-6B11280E2659"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "50F4F944-7FBC-4419-B684-711CA85CA59B"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "2FBAFAE4-0D3C-4BB7-BE78-BB95E07FB867"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:itanium:*", "vulnerable": true, "matchCriteriaId": "34B5FE78-4F33-4FAF-B90C-2D41284D2904"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "F8216946-5F76-48B9-91CC-207F657D7D3C"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "B36BFDA7-596B-45EA-AACE-F8A796CECDBB"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp2:server_core:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "CA94B3B3-95CE-4733-BC0A-1E0E25783EFE"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:*:sp2:server_core:*:*:x64:*:*", "vulnerable": true, "matchCriteriaId": "632B3DE3-1715-4692-8A9C-A095EAE4D100"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itanium:*", "vulnerable": true, "matchCriteriaId": "B320A104-9037-487E-BC9A-62B4A6B49FD0"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F"}, {"criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:server_core:*:*:*:itanium:*", "vulnerable": true, "matchCriteriaId": "5528FA44-2CA7-4166-B59F-EA2299B937FD"}, {"criteria": "cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:x64:*", "vulnerable": true, "matchCriteriaId": "0161C884-70A5-4AD0-BD80-F0F7B3D8579E"}, {"criteria": "cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:x86:*", "vulnerable": true, "matchCriteriaId": "89F0F60A-C92C-4047-A803-B180F695377E"}], "operator": "OR"}]}], "sourceIdentifier": "secure@microsoft.com", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Microsoft IME Japanese Privilege Escalation Vulnerability"}