1. CVE-Search
  2. CVE-2010-3138
ID CVE-2010-3138
Summary Untrusted search path vulnerability in the Indeo Codec in iac25_32.ax in Microsoft Windows XP SP3 allows local users to gain privileges via a Trojan horse iacenc.dll file in the current working directory, as demonstrated by access through BS.Player or Media Player Classic to a directory that contains a .avi, .mka, .ra, or .ram file, aka "Indeo Codec Insecure Library Loading Vulnerability." NOTE: some of these details are obtained from third party information. Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426 - 'Untrusted Search Path Vulnerability'
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:windows_media_player:*:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:windows_media_player:*:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
  • cpe:2.3:a:bsplayer:bs.player:*:*:*:*:*:*:*:*
    cpe:2.3:a:bsplayer:bs.player:*:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 12-10-2018 - 21:58)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
msbulletin via4
bulletin_id MS12-014
bulletin_url
date 2012-02-14T00:00:00
impact Remote Code Execution
knowledgebase_id 2661637
knowledgebase_url
severity Important
title Vulnerability in Indeo Codec Could Allow Remote Code Execution
oval via4
accepted 2012-03-12T04:00:45.706-04:00
class vulnerability
contributors
  • name SecPod Team
    organization SecPod Technologies
  • name Dragos Prisaca
    organization Symantec Corporation
definition_extensions
comment Microsoft Windows XP (x86) SP3 is installed
oval oval:org.mitre.oval:def:5631
description Untrusted search path vulnerability in the Indeo Codec in iac25_32.ax in Microsoft Windows XP SP3 allows local users to gain privileges via a Trojan horse iacenc.dll file in the current working directory, as demonstrated by access through BS.Player or Media Player Classic to a directory that contains a .avi, .mka, .ra, or .ram file, aka "Indeo Codec Insecure Library Loading Vulnerability." NOTE: some of these details are obtained from third party information.
family windows
id oval:org.mitre.oval:def:7132
status accepted
submitted 2010-09-23T15:01:11
title Indeo Codec Insecure Library Loading Vulnerability
version 78
refmap via4
cert TA12-045A
exploit-db
  • 14765
  • 14788
misc http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4956.php
osvdb 67588
secunia 41114
vupen ADV-2010-2190
Last major update 12-10-2018 - 21:58
Published 27-08-2010 - 19:00
Last modified 12-10-2018 - 21:58
Back to Top