CVSS 2.0 Score 9.3 of 10 (high)


Published Apr 10, 2012
Updated: Oct 12, 2018


CVE-2012-0158 is a vulnerability that affects various Microsoft products including Microsoft Office 2003, 2007, and 2010, SQL Server 2000, 2005, and 2008, BizTalk Server 2002, Commerce Server 2002 and 2007, Visual FoxPro 8.0 and 9.0, and Visual Basic 6.0 Runtime. The vulnerability allows remote attackers to execute arbitrary code through a crafted website, Office document, or .rtf file that triggers system state corruption. This vulnerability was exploited in the wild in April 2012. The potential danger to organizations is high as it can lead to unauthorized code execution on affected systems. To remediate the vulnerability, organizations should apply the necessary security patches provided by Microsoft for the affected products.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2012-0158 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options