CVE-2010-3973
CVE-2010-3973
The WMITools ActiveX control in WBEMSingleView.ocx 1.50.1131.0 in Microsoft WMI Administrative Tools 1.1 and earlier in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via a crafted argument to the AddContextRef method, possibly an untrusted pointer dereference, aka "Microsoft WMITools ActiveX Control Vulnerability."
Productos afectados
n/a · n/aPoCs públicas encontradas — 3
cve_referencewww.exploit-db.com/exploits/15809no verificadoexploitdbwww.exploit-db.com/exploits/16516no verificadoexploitdbwww.exploit-db.com/exploits/15809no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://blogs.technet.com/b/srd/archive/2011/01/07/assessing-the-risk-of-public-issues-currently-being-tracked-by-the-msrc.aspxhttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-027http://secunia.com/advisories/42693https://exchange.xforce.ibmcloud.com/vulnerabilities/64250https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12475http://www.exploit-db.com/exploits/15809http://www.kb.cert.org/vuls/id/725596http://www.securityfocus.com/bid/45546http://www.vupen.com/english/advisories/2010/3301http://www.wooyun.org/bug.php?action=view&id=1006