CVE-2012-0158
Summary
| CVE | CVE-2012-0158 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2012-04-10 21:55:00 UTC |
| Updated | 2018-10-12 22:02:00 UTC |
| Description | The (1) ListView, (2) ListView2, (3) TreeView, and (4) TreeView2 ActiveX controls in MSCOMCTL.OCX in the Common Controls in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2003 Web Components SP3; SQL Server 2000 SP4, 2005 SP4, and 2008 SP2, SP3, and R2; BizTalk Server 2002 SP1; Commerce Server 2002 SP4, 2007 SP2, and 2009 Gold and R2; Visual FoxPro 8.0 SP1 and 9.0 SP2; and Visual Basic 6.0 Runtime allow remote attackers to execute arbitrary code via a crafted (a) web site, (b) Office document, or (c) .rtf file that triggers "system state" corruption, as exploited in the wild in April 2012, aka "MSCOMCTL.OCX RCE Vulnerability." |
Risk And Classification
EPSS: 0.943190000 probability, percentile 0.999510000 (date 2026-04-02)
CISA KEV: Listed on 2021-11-03; due 2022-05-03; ransomware use Unknown
Problem Types: CWE-94
CISA Known Exploited Vulnerability
| Vendor | Microsoft |
|---|---|
| Product | MSCOMCTL.OCX |
| Name | Microsoft MSCOMCTL.OCX Remote Code Execution Vulnerability |
| Required Action | Apply updates per vendor instructions. |
| Notes | https://nvd.nist.gov/vuln/detail/CVE-2012-0158 |
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Microsoft | Biztalk Server | 2002 | sp1 | All | All |
| Application | Microsoft | Biztalk Server | 2002 | sp1 | All | All |
| Application | Microsoft | Commerce Server | 2002 | sp4 | All | All |
| Application | Microsoft | Commerce Server | 2007 | sp2 | All | All |
| Application | Microsoft | Commerce Server | 2009 | All | All | All |
| Application | Microsoft | Commerce Server | 2009 | r2 | All | All |
| Application | Microsoft | Commerce Server | 2002 | sp4 | All | All |
| Application | Microsoft | Commerce Server | 2007 | sp2 | All | All |
| Application | Microsoft | Commerce Server | 2009 | All | All | All |
| Application | Microsoft | Commerce Server | 2009 | r2 | All | All |
| Application | Microsoft | Office | 2003 | sp3 | All | All |
| Application | Microsoft | Office | 2007 | sp2 | All | All |
| Application | Microsoft | Office | 2007 | sp3 | All | All |
| Application | Microsoft | Office | 2010 | All | x86 | All |
| Application | Microsoft | Office | 2010 | sp1 | x86 | All |
| Application | Microsoft | Office | 2003 | sp3 | All | All |
| Application | Microsoft | Office | 2007 | sp2 | All | All |
| Application | Microsoft | Office | 2007 | sp3 | All | All |
| Application | Microsoft | Office | 2010 | All | x86 | All |
| Application | Microsoft | Office | 2010 | sp1 | x86 | All |
| Application | Microsoft | Office Web Components | 2003 | sp3 | All | All |
| Application | Microsoft | Office Web Components | 2003 | sp3 | All | All |
| Application | Microsoft | Sql Server | 2000 | sp4 | All | All |
| Application | Microsoft | Sql Server | 2000 | sp4 | analysis_services | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | express_advanced_services | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | itanium | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | x64 | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | x86 | All |
| Application | Microsoft | Sql Server | 2008 | r2 | itanium | All |
| Application | Microsoft | Sql Server | 2008 | r2 | x64 | All |
| Application | Microsoft | Sql Server | 2008 | r2 | x86 | All |
| Application | Microsoft | Sql Server | 2008 | sp2 | itanium | All |
| Application | Microsoft | Sql Server | 2008 | sp2 | x64 | All |
| Application | Microsoft | Sql Server | 2008 | sp2 | x86 | All |
| Application | Microsoft | Sql Server | 2008 | sp3 | itanium | All |
| Application | Microsoft | Sql Server | 2008 | sp3 | x64 | All |
| Application | Microsoft | Sql Server | 2008 | sp3 | x86 | All |
| Application | Microsoft | Sql Server | 2000 | sp4 | All | All |
| Application | Microsoft | Sql Server | 2000 | sp4 | analysis_services | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | express_advanced_services | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | itanium | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | x64 | All |
| Application | Microsoft | Sql Server | 2005 | sp4 | x86 | All |
| Application | Microsoft | Sql Server | 2008 | r2 | itanium | All |
| Application | Microsoft | Sql Server | 2008 | r2 | x64 | All |
| Application | Microsoft | Sql Server | 2008 | r2 | x86 | All |
| Application | Microsoft | Sql Server | 2008 | sp2 | itanium | All |
| Application | Microsoft | Sql Server | 2008 | sp2 | x64 | All |
| Application | Microsoft | Sql Server | 2008 | sp2 | x86 | All |
| Application | Microsoft | Sql Server | 2008 | sp3 | itanium | All |
| Application | Microsoft | Sql Server | 2008 | sp3 | x64 | All |
| Application | Microsoft | Sql Server | 2008 | sp3 | x86 | All |
| Application | Microsoft | Visual Basic | 6.0 | All | runtime_extended_files | All |
| Application | Microsoft | Visual Basic | 6.0 | All | runtime_extended_files | All |
| Application | Microsoft | Visual Foxpro | 8.0 | sp1 | All | All |
| Application | Microsoft | Visual Foxpro | 9.0 | sp2 | All | All |
| Application | Microsoft | Visual Foxpro | 8.0 | sp1 | All | All |
| Application | Microsoft | Visual Foxpro | 9.0 | sp2 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Microsoft Visual Basic Windows Common Controls (MSCOMCTL.OCX) Bug Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | www.securitytracker.com | |
| Microsoft Commerce Server Windows Common Controls (MSCOMCTL.OCX) Bug Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | www.securitytracker.com | |
| Microsoft SQL Server Windows Common Controls (MSCOMCTL.OCX) Bug Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | www.securitytracker.com | |
| Repository / Oval Repository | OVAL | oval.cisecurity.org | |
| Microsoft Windows Common Controls ActiveX Control Remote Code Execution Vulnerability | BID | www.securityfocus.com | |
| Comment on The curious case of a CVE-2012-0158 exploit by Chris Pierce | OSINT | MISC | opensources.info | |
| Microsoft Office Windows Common Controls (MSCOMCTL.OCX) Bug Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | www.securitytracker.com | |
| Microsoft Visual FoxPro Windows Common Controls (MSCOMCTL.OCX) Bug Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | www.securitytracker.com | |
| Microsoft Security Bulletin MS12-027 - Critical | Microsoft Docs | MS | docs.microsoft.com | |
| Microsoft BizTalk Server Windows Common Controls (MSCOMCTL.OCX) Bug Lets Remote Users Execute Arbitrary Code - SecurityTracker | SECTRACK | www.securitytracker.com | |
| US-CERT Alert TA12-101A -- Microsoft Updates for Multiple Vulnerabilities | CERT | www.us-cert.gov | US Government Resource |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
| CISA Known Exploited Vulnerabilities catalog | CISA | www.cisa.gov | kev |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.