exploitDog

CVE-2010-3973

Опубликовано: 23 дек. 2010

Источник: nvd

CVSS2: 9.3

EPSS Высокий

Описание

The WMITools ActiveX control in WBEMSingleView.ocx 1.50.1131.0 in Microsoft WMI Administrative Tools 1.1 and earlier in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via a crafted argument to the AddContextRef method, possibly an untrusted pointer dereference, aka "Microsoft WMITools ActiveX Control Vulnerability."

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:wmi_administrative_tools:*:*:*:*:*:*:*:*

Версия до 1.1 (включая)

EPSS

Процентиль: 99%

0.78353

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-2r2c-prqv-cxp3

github

больше 3 лет назад

The WMITools ActiveX control in WBEMSingleView.ocx 1.50.1131.0 in Microsoft WMI Administrative Tools 1.1 and earlier in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via a crafted argument to the AddContextRef method, possibly an untrusted pointer dereference, aka "Microsoft WMITools ActiveX Control Vulnerability."

EPSS

Процентиль: 99%

0.78353

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-94