Информационная безопасность
[RU] switch to English


CVECVE-2010-3190
СтатусCandidate
ОписаниеUntrusted search path vulnerability in ATL MFC Trace Tool (AtlTraceTool8.exe), as used in Microsoft Visual Studio, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a TRC, cur, rs, rct, or res file.
Важность
High
CVSS score9,3
CVSS vector(AV:N/AC:M/Au:N/C:C/I:C/A:C)
PhaseAssigned (18.09.2015)
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3190
ReferencesSECUNIA : 41212
 MISC : http://www.corelan.be:8800/index.php/2010/08/25/dl...
SecurityVulns:Многочисленные уязвимости безопасности в Apple iTunes
О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород