Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2010-3138
PUBLISHED
More InfoOfficial Page
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
View Known Exploited Vulnerability (KEV) details
Published At-27 Aug, 2010 | 18:10
Updated At-07 Aug, 2024 | 02:55
Rejected At-
▼CVE Numbering Authority (CNA)

Untrusted search path vulnerability in the Indeo Codec in iac25_32.ax in Microsoft Windows XP SP3 allows local users to gain privileges via a Trojan horse iacenc.dll file in the current working directory, as demonstrated by access through BS.Player or Media Player Classic to a directory that contains a .avi, .mka, .ra, or .ram file, aka "Indeo Codec Insecure Library Loading Vulnerability." NOTE: some of these details are obtained from third party information.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.us-cert.gov/cas/techalerts/TA12-045A.html
third-party-advisory
x_refsource_CERT
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4956.php
x_refsource_MISC
http://www.exploit-db.com/exploits/14765
exploit
x_refsource_EXPLOIT-DB
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7132
vdb-entry
signature
x_refsource_OVAL
http://www.vupen.com/english/advisories/2010/2190
vdb-entry
x_refsource_VUPEN
http://osvdb.org/67588
vdb-entry
x_refsource_OSVDB
http://www.exploit-db.com/exploits/14788
exploit
x_refsource_EXPLOIT-DB
http://secunia.com/advisories/41114
third-party-advisory
x_refsource_SECUNIA
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-014
vendor-advisory
x_refsource_MS
Hyperlink: http://www.us-cert.gov/cas/techalerts/TA12-045A.html
Resource:
third-party-advisory
x_refsource_CERT
Hyperlink: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4956.php
Resource:
x_refsource_MISC
Hyperlink: http://www.exploit-db.com/exploits/14765
Resource:
exploit
x_refsource_EXPLOIT-DB
Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7132
Resource:
vdb-entry
signature
x_refsource_OVAL
Hyperlink: http://www.vupen.com/english/advisories/2010/2190
Resource:
vdb-entry
x_refsource_VUPEN
Hyperlink: http://osvdb.org/67588
Resource:
vdb-entry
x_refsource_OSVDB
Hyperlink: http://www.exploit-db.com/exploits/14788
Resource:
exploit
x_refsource_EXPLOIT-DB
Hyperlink: http://secunia.com/advisories/41114
Resource:
third-party-advisory
x_refsource_SECUNIA
Hyperlink: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-014
Resource:
vendor-advisory
x_refsource_MS
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.us-cert.gov/cas/techalerts/TA12-045A.html
third-party-advisory
x_refsource_CERT
x_transferred
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4956.php
x_refsource_MISC
x_transferred
http://www.exploit-db.com/exploits/14765
exploit
x_refsource_EXPLOIT-DB
x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7132
vdb-entry
signature
x_refsource_OVAL
x_transferred
http://www.vupen.com/english/advisories/2010/2190
vdb-entry
x_refsource_VUPEN
x_transferred
http://osvdb.org/67588
vdb-entry
x_refsource_OSVDB
x_transferred
http://www.exploit-db.com/exploits/14788
exploit
x_refsource_EXPLOIT-DB
x_transferred
http://secunia.com/advisories/41114
third-party-advisory
x_refsource_SECUNIA
x_transferred
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-014
vendor-advisory
x_refsource_MS
x_transferred
Hyperlink: http://www.us-cert.gov/cas/techalerts/TA12-045A.html
Resource:
third-party-advisory
x_refsource_CERT
x_transferred
Hyperlink: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4956.php
Resource:
x_refsource_MISC
x_transferred
Hyperlink: http://www.exploit-db.com/exploits/14765
Resource:
exploit
x_refsource_EXPLOIT-DB
x_transferred
Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7132
Resource:
vdb-entry
signature
x_refsource_OVAL
x_transferred
Hyperlink: http://www.vupen.com/english/advisories/2010/2190
Resource:
vdb-entry
x_refsource_VUPEN
x_transferred
Hyperlink: http://osvdb.org/67588
Resource:
vdb-entry
x_refsource_OSVDB
x_transferred
Hyperlink: http://www.exploit-db.com/exploits/14788
Resource:
exploit
x_refsource_EXPLOIT-DB
x_transferred
Hyperlink: http://secunia.com/advisories/41114
Resource:
third-party-advisory
x_refsource_SECUNIA
x_transferred
Hyperlink: https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-014
Resource:
vendor-advisory
x_refsource_MS
x_transferred
Details not found