3.6
CVSSv2

CVE-2011-4434

CVSSv4: NA | CVSSv3: NA | CVSSv2: 3.6 | VMScore: 460 | EPSS: 0.00043 | KEV: Not Included
Published: 11/11/2011 Updated: 21/11/2024

Vulnerability Summary

Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 do not properly enforce AppLocker rules, which allows local users to bypass intended access restrictions via a (1) macro or (2) scripting feature in an application, as demonstrated by Microsoft Office applications and the SANDBOX_INERT and LOAD_IGNORE_CODE_AUTHZ_LEVEL flags.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows 7

microsoft windows 7 -

microsoft windows server 2008 r2