CVE-2010-3133
HIGH severity · CVSS 9.3
9.3CVSS HIGH
Summary
Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark.
Impact & exploitability
Attack vectorNetwork
Attack complexity—
Privileges required—
User interaction—
Confidentiality impact—
Integrity impact—
Availability impact—
Exploit probability (EPSS)9%
AV:N/AC:M/Au:N/C:C/I:C/A:C
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://secunia.com/advisories/41064Advisory
- http://www.vupen.com/english/advisories/2010/2165Advisory
- http://www.wireshark.org/security/wnpa-sec-2010-09.htmlAdvisory
- http://www.wireshark.org/security/wnpa-sec-2010-10.htmlAdvisory
- http://www.vupen.com/english/advisories/2010/2243
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11498
- http://www.exploit-db.com/exploits/14721/Exploit