Executive Summary
Summary | |
---|---|
Title | Vulnerability in Windows Common Control Library Could Allow Remote Code Execution (2296011) |
Informations | |||
---|---|---|---|
Name | MS10-081 | First vendor Publication | 2010-10-12 |
Vendor | Microsoft | Last vendor Modification | 2010-10-12 |
Severity (Vendor) | Important | Revision | 1.0 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:H/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.6 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | High |
Cvss Expoit Score | 4.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.0 (October 12, 2010): Bulletin published.Summary: This security update resolves a privately reported vulnerability in the Windows common control library. The vulnerability could allow remote code execution if a user visited a specially crafted Web page. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS10-081.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:7272 | |||
Oval ID: | oval:org.mitre.oval:def:7272 | ||
Title: | Comctl32 Heap Overflow Vulnerability | ||
Description: | Heap-based buffer overflow in Comctl32.dll (aka the common control library) in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when a third-party SVG viewer is used, allows remote attackers to execute arbitrary code via a crafted HTML document that triggers unspecified messages from this viewer, aka "Comctl32 Heap Overflow Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2746 | Version: | 7 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 7 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2010-10-13 | Name : Windows Common Control Library Remote Code Execution Vulnerability (2296011) File : nvt/secpod_ms10-081.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
68549 | Microsoft Windows Common Control Library (comctl32.dll) Third-party SVG Conte... Microsoft Windows is prone to an overflow condition. The common control library, Comctl32.dll, fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted HTML document, a context-dependent attacker can potentially execute arbitrary code. |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2010-10-14 | IAVM : 2010-B-0090 - Microsoft Windows Common Control Library Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0025534 |
Snort® IPS/IDS
Date | Description |
---|---|
2015-03-17 | Microsoft Windows Comctl32.dll third-party SVG viewer heap overflow attempt RuleID : 33479 - Revision : 2 - Type : OS-WINDOWS |
2014-01-10 | Microsoft Windows Comctl32.dll third-party SVG viewer heap overflow attempt RuleID : 18297 - Revision : 16 - Type : OS-WINDOWS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-10-13 | Name : A library on the remote Windows host has a buffer overflow vulnerability. File : smb_nt_ms10-081.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2016-04-26 23:01:48 |
|
2015-03-17 21:26:24 |
|
2014-02-17 11:46:44 |
|
2014-01-19 21:30:32 |
|
2013-11-11 12:41:19 |
|