CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-3142

Untrusted search path vulnerability in Microsoft Office PowerPoint 2007 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse rpawinet.dll that is located in the same folder as a .odp, .pothtml, .potm, .potx, .ppa, .ppam, .pps, .ppt, .ppthtml, .pptm, .pptxml, .pwz, .sldm, .sldx, and .thmx file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.217

EPSS Ranking 95.4%

CVSS Severity

CVSS v2 Score 9.3

References

http://www.exploit-db.com/exploits/14782/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12219
http://www.exploit-db.com/exploits/14782/
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12219

Products affected by CVE-2010-3142

Microsoft » Powerpoint » Version: 2007

cpe:2.3:a:microsoft:powerpoint:2007

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-3142

Products

Pricing

Contact Us