Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2010-3133
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-26 Aug, 2010 | 18:36
Updated At-11 Apr, 2025 | 00:51

Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.09.3HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
CPE Matches
Wireshark Foundation
wireshark
>>wireshark>>Versions up to 1.2.10(inclusive)
cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>0.99.2
cpe:2.3:a:wireshark:wireshark:0.99.2:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>0.99.3
cpe:2.3:a:wireshark:wireshark:0.99.3:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>0.99.4
cpe:2.3:a:wireshark:wireshark:0.99.4:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>0.99.5
cpe:2.3:a:wireshark:wireshark:0.99.5:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>0.99.6
cpe:2.3:a:wireshark:wireshark:0.99.6:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>0.99.7
cpe:2.3:a:wireshark:wireshark:0.99.7:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>0.99.8
cpe:2.3:a:wireshark:wireshark:0.99.8:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.0
cpe:2.3:a:wireshark:wireshark:1.0.0:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.1
cpe:2.3:a:wireshark:wireshark:1.0.1:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.2
cpe:2.3:a:wireshark:wireshark:1.0.2:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.3
cpe:2.3:a:wireshark:wireshark:1.0.3:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.4
cpe:2.3:a:wireshark:wireshark:1.0.4:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.5
cpe:2.3:a:wireshark:wireshark:1.0.5:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.6
cpe:2.3:a:wireshark:wireshark:1.0.6:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.7
cpe:2.3:a:wireshark:wireshark:1.0.7:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.8
cpe:2.3:a:wireshark:wireshark:1.0.8:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.9
cpe:2.3:a:wireshark:wireshark:1.0.9:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.10
cpe:2.3:a:wireshark:wireshark:1.0.10:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.11
cpe:2.3:a:wireshark:wireshark:1.0.11:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.0.12
cpe:2.3:a:wireshark:wireshark:1.0.12:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.0
cpe:2.3:a:wireshark:wireshark:1.2.0:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.1
cpe:2.3:a:wireshark:wireshark:1.2.1:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.2
cpe:2.3:a:wireshark:wireshark:1.2.2:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.3
cpe:2.3:a:wireshark:wireshark:1.2.3:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.4
cpe:2.3:a:wireshark:wireshark:1.2.4:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.5
cpe:2.3:a:wireshark:wireshark:1.2.5:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.6
cpe:2.3:a:wireshark:wireshark:1.2.6:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.7
cpe:2.3:a:wireshark:wireshark:1.2.7:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.8
cpe:2.3:a:wireshark:wireshark:1.2.8:*:*:*:*:*:*:*
Wireshark Foundation
wireshark
>>wireshark>>1.2.9
cpe:2.3:a:wireshark:wireshark:1.2.9:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-OtherPrimarynvd@nist.gov
Evaluator Description
Per: http://cwe.mitre.org/data/definitions/426.html CWE-426 - 'Untrusted Search Path Vulnerability'
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://secunia.com/advisories/41064cve@mitre.org
Vendor Advisory
http://www.exploit-db.com/exploits/14721/cve@mitre.org
Exploit
http://www.vupen.com/english/advisories/2010/2165cve@mitre.org
Vendor Advisory
http://www.vupen.com/english/advisories/2010/2243cve@mitre.org
N/A
http://www.wireshark.org/security/wnpa-sec-2010-09.htmlcve@mitre.org
Vendor Advisory
http://www.wireshark.org/security/wnpa-sec-2010-10.htmlcve@mitre.org
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11498cve@mitre.org
N/A
http://secunia.com/advisories/41064af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.exploit-db.com/exploits/14721/af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.vupen.com/english/advisories/2010/2165af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.vupen.com/english/advisories/2010/2243af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.wireshark.org/security/wnpa-sec-2010-09.htmlaf854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.wireshark.org/security/wnpa-sec-2010-10.htmlaf854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11498af854a3a-2127-422b-91ae-364da2661108
N/A
Change History
0Changes found
Details not found