Vulnerabilities > CVE-2010-3965 - Unspecified vulnerability in Microsoft Windows Media Encoder 9/9Series
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
nessus
Summary
Untrusted search path vulnerability in Windows Media Encoder 9 on Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Windows Media Profile (PRX) file, aka "Insecure Library Loading Vulnerability."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 | |
| OS | 9 |
Msbulletin
| bulletin_id | MS10-094 |
| bulletin_url | |
| date | 2010-12-14T00:00:00 |
| impact | Remote Code Execution |
| knowledgebase_id | 2447961 |
| knowledgebase_url | |
| severity | Important |
| title | Vulnerability in Windows Media Encoder Could Allow Remote Code Execution |
Nessus
| NASL family | Windows : Microsoft Bulletins |
| NASL id | SMB_NT_MS10-094.NASL |
| description | The remote Windows host contains a version of Windows Media Encoder that incorrectly restricts the path used for loading external libraries. If an attacker can trick a user on the affected system into opening a specially crafted Windows Media Profile (.prx) file located in the same network directory as a specially crafted dynamic link library (DLL) file, this issue could be leveraged to execute arbitrary code subject to the user |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 51166 |
| published | 2010-12-15 |
| reporter | This script is Copyright (C) 2010-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/51166 |
| title | MS10-094: Vulnerability in Windows Media Encoder Could Allow Remote Code Execution (2447961) |
Oval
| accepted | 2015-08-10T04:00:09.807-04:00 | ||||||||||||||||||||||||||||||||||||||||||||||||
| class | vulnerability | ||||||||||||||||||||||||||||||||||||||||||||||||
| contributors |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| definition_extensions |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| description | Untrusted search path vulnerability in Windows Media Encoder 9 on Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Windows Media Profile (PRX) file, aka "Insecure Library Loading Vulnerability." | ||||||||||||||||||||||||||||||||||||||||||||||||
| family | windows | ||||||||||||||||||||||||||||||||||||||||||||||||
| id | oval:org.mitre.oval:def:12235 | ||||||||||||||||||||||||||||||||||||||||||||||||
| status | accepted | ||||||||||||||||||||||||||||||||||||||||||||||||
| submitted | 2010-06-08T13:00:00 | ||||||||||||||||||||||||||||||||||||||||||||||||
| title | Insecure Library Loading Vulnerability | ||||||||||||||||||||||||||||||||||||||||||||||||
| version | 37 |
References
- http://www.securityfocus.com/bid/42855
- http://www.securityfocus.com/bid/42855
- http://www.securitytracker.com/id?1024876
- http://www.securitytracker.com/id?1024876
- http://www.us-cert.gov/cas/techalerts/TA10-348A.html
- http://www.us-cert.gov/cas/techalerts/TA10-348A.html
- http://www.vupen.com/english/advisories/2010/3217
- http://www.vupen.com/english/advisories/2010/3217
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-094
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-094
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12235
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12235