CVE-2010-3133

high

Description

Untrusted search path vulnerability in Wireshark 0.8.4 through 1.0.15 and 1.2.0 through 1.2.10 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse airpcap.dll, and possibly other DLLs, that is located in the same folder as a file that automatically launches Wireshark.

References

http://secunia.com/advisories/41064

http://www.exploit-db.com/exploits/14721/

http://www.vupen.com/english/advisories/2010/2165

http://www.vupen.com/english/advisories/2010/2243

http://www.wireshark.org/security/wnpa-sec-2010-09.html

http://www.wireshark.org/security/wnpa-sec-2010-10.html

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11498

Details

Source: MITRE

Published: 2010-08-26

Updated: 2017-09-19

Risk Information

CVSS v2

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH