This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.
The version of Microsoft Office installed on the remote Windows host
has a privilege escalation vulnerability.
The version of Microsoft Office Input Method Editor (Chinese)
installed on the remote host has a privilege escalation vulnerability.
A local attacker could exploit this by utilizing the MSPY IME toolbar
in an unspecified manner, resulting in arbitrary code execution in
See also :
Microsoft has released a set of patches for Pinyin IME 2010, Office
Pinyin SimpleFast Style 2010, and Office Pinyin New Experience Style
Risk factor :
High / CVSS Base Score : 7.2
CVSS Temporal Score : 5.3
Public Exploit Available : false