Lucene search

K

MitreCVELIST:CVE-2010-3131

HistoryAug 26, 2010 - 6:00 p.m.

CVE-2010-3131

2010-08-2618:00:00

mitre

www.cve.org

7

AI Score

8.7

Confidence

High

EPSS

0.14

Percentile

95.7%

Untrusted search path vulnerability in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 on Windows XP allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .htm, .html, .jtx, .mfp, or .eml file.

References

lists.opensuse.org/opensuse-security-announce/2010-10/msg00002.html

secunia.com/advisories/41095

secunia.com/advisories/41168

www.exploit-db.com/exploits/14730

www.exploit-db.com/exploits/14783

www.mozilla.org/security/announce/2010/mfsa2010-52.html

www.securityfocus.com/archive/1/513324/100/0/threaded

www.vupen.com/english/advisories/2010/2169

www.vupen.com/english/advisories/2010/2201

www.vupen.com/english/advisories/2010/2323

bugzilla.mozilla.org/show_bug.cgi?id=579593

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12143

AI Score

8.7

Confidence

High

EPSS

0.14

Percentile

95.7%

Related for CVELIST:CVE-2010-3131

openvas9 nvd1 exploitdb2 cve1 mozilla1 prion1 securityvulns2 nessus31 freebsd1 suse2 gentoo1