CVE-2010-5082

EPSS 43.32%
Veröffentlicht 17.01.2012 19:55:00
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

Untrusted search path vulnerability in colorcpl.exe 6.0.6000.16386 in the Color Control Panel in Microsoft Windows Server 2008 SP2, R2, and R2 SP1 allows local users to gain privileges via a Trojan horse sti.dll file in the current working directory, as demonstrated by a directory that contains a .camp, .cdmp, .gmmp, .icc, or .icm file, aka "Color Control Panel Insecure Library Loading Vulnerability."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Windows Server 2008 Updatesp2

Microsoft ≫ Windows Server 2008 Version- Updatesp2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	43.32%	0.974

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://www.us-cert.gov/cas/techalerts/TA12-045A.html

US Government Resource

http://shinnai.altervista.org/exploits/SH-006-20100914.html

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-012

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14446

https://nvd.nist.gov/vuln/detail/CVE-2010-5082

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-5082

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-5082

EUVD