CVE-2010-3337 | SynScan

Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2010-3337

Untrusted search path vulnerability in Microsoft Office 2007 SP2 and 2010 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka "Insecure Library Loading Vulnerability." NOTE: this might overlap CVE-2010-3141 and CVE-2010-3142.

Published: Nov 10, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-3337
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / office	2007-sp2	2007-sp2.x
microsoft / office	2010	2010.x