Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-4182
HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-4182

2022-10-0316:21:06
[email protected]
web.nvd.nist.gov
25
cve-2010-4182
untrusted search path
dao library
microsoft windows
arbitrary code execution
dll hijacking
nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

High

0.053 Low

EPSS

Percentile

93.1%

JSON

Untrusted search path vulnerability in the Data Access Objects (DAO) library (dao360.dll) in Microsoft Windows XP Professional SP3, Windows Server 2003 R2 Enterprise Edition SP3, Windows Vista Business SP1, and Windows 7 Professional allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse msjet49.dll that is located in the same folder as a file that is processed by dao360.dll. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD
Node
microsoftwindows_7
OR
microsoftwindows_server_2003-
OR
microsoftwindows_vistasp1
OR
microsoftwindows_xpMatch-sp3professional

Related

prion 1
nvd 1
cvelist 1
prion
prion
Design/Logic Flaw
2010-11-04 19:00:00
nvd
nvd
CVE-2010-4182
2010-11-04 19:00:03
cvelist
cvelist
CVE-2010-4182
2022-10-03 16:21:06

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

High

0.053 Low

EPSS

Percentile

93.1%

JSON
Related for CVE-2010-4182
prion1nvd1cvelist1