CVE-2014-4077
- Reference to the description:
- Description:
- Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Office 2007 SP3, when IMJPDCT.EXE (aka IME for Japanese) is installed, allow remote attackers to bypass a sandbox protection mechanism via a crafted PDF document, aka "Microsoft IME (Japanese) Elevation of Privilege Vulnerability," as exploited in the wild in 2014.
- Last updated date:
- 02/10/2025
Reports
ACTIVELY EXPLOITED
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 11/11/2014
- Reference url to background
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-078
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 10/12/2018
- Reference url to background
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 05/25/2022
- Reference url to background
https://www.cisa.gov/known-exploited-vulnerabilities-catalog