CVE-2010-3140

Published: Aug 27, 2010Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Untrusted search path vulnerability in Microsoft Windows Internet Communication Settings on Windows XP SP3 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse schannel.dll that is located in the same folder as an ISP file.

Affected (1)

Products: Microsoft: Windows Xp

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows Xp	All versions

References (4)

http://www.exploit-db.com/exploits/14780

Source: cve@mitre.org

Exploit

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6743

Source: cve@mitre.org

http://www.exploit-db.com/exploits/14780

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6743

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.