CVE-2012-0158 - Microsoft MSCOMCTL.OCX Remote Code Execution Vulnerability
Project:Microsoft
Product:MSCOMCTL.OCX
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
Microsoft MSCOMCTL.OCX Remote Code Execution Vulnerability
Description
Microsoft MSCOMCTL.OCX contains an unspecified vulnerability that allows for remote code execution, allowing an attacker to take complete control of an affected system under the context of the current user.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2012-0158
Related News Articles
Lotus Panda Hacks SE Asian Governments With Browser Stealers and Sideloaded MalwareApril 22, 2025