CVE-2010-3130

Published: Aug 26, 2010Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file.

Affected (1)

Products: Techsmith: Snagit

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Techsmith Snagit	Version 10.0.0

References (6)

http://secunia.com/advisories/41124

Source: cve@mitre.org

Vendor Advisory

http://www.exploit-db.com/exploits/14764

Source: cve@mitre.org

Exploit

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6668

Source: cve@mitre.org

http://secunia.com/advisories/41124

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.exploit-db.com/exploits/14764

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6668

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.