Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-3141 — Microsoft Powerpoint vulnerability

5 documents4 sources

Severity

9.3CRITICALNVD

EPSS

4.9%

top 10.36%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Powerpoint

Timeline

PublishedAug 27

Latest updateMay 17

Description

Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse pptimpconv.dll that is located in the same folder as a .odp, .pot, .potm, .potx, .ppa, .pps, .ppsm, .ppsx, .ppt, .pptm, .pptx, .pwz, .sldm, or .sldx file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/powerpoint2010

🔴Vulnerability Details

GHSA

GHSA-rphw-g3vg-hr38: Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and cond↗2022-05-17

▶

CVEList

CVE-2010-3141: Untrusted search path vulnerability in Microsoft PowerPoint 2010 allows local users, and possibly remote attackers, to execute arbitrary code and cond↗2010-08-27

▶

💥Exploits & PoCs

Exploit-DB

Microsoft PowerPoint 2007 - 'rpawinet.dll' DLL Hijacking↗2010-08-25

▶

Exploit-DB

Microsoft PowerPoint 2010 - 'pptimpconv.dll' DLL Hijacking↗2010-08-24

▶