Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-3970

EPSS 81.21% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-3970

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack-based buffer overflow in the CreateSizedDIBSECTION function in shimgvw.dll in the Windows Shell graphics processor (aka graphics rendering engine) in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary code via a crafted .MIC or unspecified Office document containing a thumbnail bitmap with a negative biClrUsed value, as reported by Moti and Xu Hao, aka "Windows Shell Graphics Processing Overrun Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows Shell图形处理器shimgvw.dll CreateSizedDIBSECTION函数栈缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows Shell图形处理器(graphics rendering engine)的shimgvw.dll中的CreateSizedDIBSECTION函数中存在基于栈的缓冲区溢出漏洞。远程攻击者可借助畸形的.MIC或包含带有负biClrUsed值缩略位图的未明Office文档执行任意代码。 该漏洞位于Microsoft Windows XP SP2和SP3版本,Server 2003 SP2版本,Vista SP1和SP2版本,以及Server 2008 Gold和SP2版本
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2010-3970

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2010-3970

登录查看更多情报信息。

Same Patch Batch · n/a · 2010-12-22 · 45 CVEs total

CVE-2010-4584Opera X.509证书加密问题漏洞
CVE-2010-4587Opera设计错误漏洞
CVE-2010-4586Opera默认配置错误漏洞
CVE-2010-0114Symantec Endpoint Protection fw_charts.php文件任意代码执行漏洞
CVE-2010-4574Google Chrome Pickle::Pickle函数拒绝服务漏洞
CVE-2010-4575Google Chrome ThemeInstalledInfoBarDelegate::Observe函数拒绝服务漏洞
CVE-2010-4576Google Chrome dispatcher.cc文件空指针引用漏洞
CVE-2010-4577Google Chrome CSS越界读取漏洞
CVE-2010-4578Google Chrome拒绝服务攻击漏洞
CVE-2010-4116HP StorageWorks Storage Mirroring远程代码执行漏洞
CVE-2010-4585Opera自动升级功能拒绝服务漏洞
CVE-2010-4583Opera Turbo设计错误漏洞
CVE-2010-4582Opera权限许可和访问控制漏洞
CVE-2010-4581Opera opera_browser未明漏洞
CVE-2010-4580Opera信息泄漏漏洞
CVE-2010-4579Opera设计错误漏洞
CVE-2010-4333Pangramsoft Pointter PHP Content Management System授权问题漏洞
CVE-2010-4332Pangramsoft Pointter PHP Content Management System管理特权绕过漏洞
CVE-2010-4275Dmasoftlab Radius Manager New User Group Script任意代码执行漏洞
CVE-2010-2590SAP Crystal Reports Print ActiveX Control缓冲区溢出漏洞

Showing top 20 of 45 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2010-3970

No comments yet

Leave a comment