CVE-2010-3967

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Movie Maker
Vendor: CVE Published:; 16 December 2010

Summary

Untrusted search path vulnerability in Microsoft Windows Movie Maker (WMM) 2.6 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Movie Maker (MSWMM) file, aka "Insecure Library Loading Vulnerability."

References

http://www.us-cert.gov/cas/techalerts/TA10-348A.html

third-party-advisoryx_refsource_CERT

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://secunia.com/advisories/42607

third-party-advisoryx_refsource_SECUNIA

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 16, 2010
Vulnerability Reserved
Oct 14, 2010

Collectors

NVD DatabaseMitre Database