CVE-2010-0483

Exploit

EPSS 81.96%
Published 03.03.2010 19:30:00
Last modified 11.04.2025 00:51:21
Source secure@microsoft.com
Teams watchlist Login
Open Login

vbscript.dll in VBScript 5.1, 5.6, 5.7, and 5.8 in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2, when Internet Explorer is used, allows user-assisted remote attackers to execute arbitrary code by referencing a (1) local pathname, (2) UNC share pathname, or (3) WebDAV server with a crafted .hlp file in the fourth argument (aka helpfile argument) to the MsgBox function, leading to code execution involving winhlp32.exe when the F1 key is pressed, aka "VBScript Help Keypress Vulnerability."

Affected products Warnungen 0 Metrics 2 CWE 1 References 23

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000 Updatesp4

   Microsoft ≫ Internet Explorer Version6
   Microsoft ≫ Internet Explorer Version7
   Microsoft ≫ Internet Explorer Version8

Microsoft ≫ Windows 2003 Server Updatesp2

   Microsoft ≫ Internet Explorer Version6
   Microsoft ≫ Internet Explorer Version7
   Microsoft ≫ Internet Explorer Version8

Microsoft ≫ Windows 2003 Server Updatesp2 Editionitanium

   Microsoft ≫ Internet Explorer Version6
   Microsoft ≫ Internet Explorer Version7
   Microsoft ≫ Internet Explorer Version8

Microsoft ≫ Windows Server 2003 Updatesp2

   Microsoft ≫ Internet Explorer Version6
   Microsoft ≫ Internet Explorer Version7
   Microsoft ≫ Internet Explorer Version8

Microsoft ≫ Windows Xp Updatesp2

   Microsoft ≫ Internet Explorer Version6
   Microsoft ≫ Internet Explorer Version7
   Microsoft ≫ Internet Explorer Version8

Microsoft ≫ Windows Xp Updatesp3

   Microsoft ≫ Internet Explorer Version6
   Microsoft ≫ Internet Explorer Version7
   Microsoft ≫ Internet Explorer Version8

Microsoft ≫ Windows Xp Version- Updatesp2 Editionx64

   Microsoft ≫ Internet Explorer Version6
   Microsoft ≫ Internet Explorer Version7
   Microsoft ≫ Internet Explorer Version8

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	81.96%	0.992

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.6	4.9	10	AV:N/AC:H/Au:N/C:C/I:C/A:C

CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

http://www.us-cert.gov/cas/techalerts/TA10-103A.html

US Government Resource

http://blogs.technet.com/msrc/archive/2010/02/28/investigating-a-new-win32hlp-and-internet-explorer-issue.aspx

Vendor Advisory

http://blogs.technet.com/msrc/archive/2010/03/01/security-advisory-981169-released.aspx

Vendor Advisory

http://blogs.technet.com/srd/archive/2010/03/01/help-keypress-vulnerability-in-vbscript-enabling-remote-code-execution.aspx

Vendor Advisory

http://isec.pl/vulnerabilities/isec-0027-msgbox-helpfile-ie.txt

Exploit

http://isec.pl/vulnerabilities10.html

Exploit