CVE-2010-5082

EPSS 43.32%
Published 17.01.2012 19:55:00
Last modified 11.04.2025 00:51:21
Source secure@microsoft.com
Teams watchlist Login
Open Login

Untrusted search path vulnerability in colorcpl.exe 6.0.6000.16386 in the Color Control Panel in Microsoft Windows Server 2008 SP2, R2, and R2 SP1 allows local users to gain privileges via a Trojan horse sti.dll file in the current working directory, as demonstrated by a directory that contains a .camp, .cdmp, .gmmp, .icc, or .icm file, aka "Color Control Panel Insecure Library Loading Vulnerability."

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Server 2008 Updatesp2

Microsoft ≫ Windows Server 2008 Version- Updatesp2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	43.32%	0.974

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://www.us-cert.gov/cas/techalerts/TA12-045A.html

US Government Resource

http://shinnai.altervista.org/exploits/SH-006-20100914.html

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-012

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14446

https://nvd.nist.gov/vuln/detail/CVE-2010-5082

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-5082

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-5082

EUVD