CVE-2010-3889
published 2010-10-08CVE-2010-3889: Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July…
PriorityP273high7.2CVSS 2.0
AVLACLAuNCCICAC
ITWVulnCheck KEV
Exploited in the wild
EPSS
1.61%
72.9th percentile
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Microsoft researchers and other researchers.
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vulncheck7.2HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-ggjq-qv33-pv47: The kernel-mode drivers in Microsoft Windows XP SP3 do not properly perform indexing of a function-pointer table during the loading of keyboard layout
ghsa_unreviewed·2022-05-14·CVSS 7.2
CVE-2010-2743 [HIGH] GHSA-ggjq-qv33-pv47: The kernel-mode drivers in Microsoft Windows XP SP3 do not properly perform indexing of a function-pointer table during the loading of keyboard layout
The kernel-mode drivers in Microsoft Windows XP SP3 do not properly perform indexing of a function-pointer table during the loading of keyboard layouts from disk, which allows local users to gain privileges via a crafted application, as demonstrated in the wild in July 2010 by the Stuxnet worm, aka "Win32k Keyboard Layout Vulnerability." NOTE: this might be a duplicate of CVE-2010-3888 or CVE-2010-3889.
GHSA
GHSA-vccr-vg7g-h549: Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild
ghsa_unreviewed·2022-05-14
CVE-2010-3889 [HIGH] GHSA-vccr-vg7g-h549: Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Microsoft researchers and other researchers.
VulnCheck
Microsoft Windows 32-bit Platforms Unspecified Privilege Escalation
vulncheck·2010·CVSS 7.2
CVE-2010-3889 [HIGH] Microsoft Windows 32-bit Platforms Unspecified Privilege Escalation
Microsoft Windows 32-bit Platforms Unspecified Privilege Escalation
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Microsoft researchers and other researchers.
Affected: Microsoft Windows
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://nvd.nist.gov/vuln/detail/CVE-2010-3889; https://www.cve.org/CVERecord?id=CVE-2010-3889
VulnCheck
Microsoft Windows Win32k Keyboard Layout Privilege Escalation
vulncheck·2010·CVSS 7.2
CVE-2010-2743 [HIGH] Microsoft Windows Win32k Keyboard Layout Privilege Escalation
Microsoft Windows Win32k Keyboard Layout Privilege Escalation
The kernel-mode drivers in Microsoft Windows XP SP3 do not properly perform indexing of a function-pointer table during the loading of keyboard layouts from disk, which allows local users to gain privileges via a crafted application, as demonstrated in the wild in July 2010 by the Stuxnet worm, aka "Win32k Keyboard Layout Vulnerability." NOTE: this might be a duplicate of CVE-2010-3888 or CVE-2010-3889.
Affected: Microsoft Windows
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.welivesecurity.com/wp-content/uploads/2021/12/eset_jumping_the_air_gap_wp.pdf
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.computerworld.com/s/article/9185919/Is_Stuxnet_the_best_malware_ever_http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100716-%281%29http://www.securelist.com/en/blog/2291/Myrtus_and_Guava_Episode_MS10_061http://www.symantec.com/connect/blogs/stuxnet-using-three-additional-zero-day-vulnerabilitieshttp://www.virusbtn.com/conference/vb2010/abstracts/LastMinute7.xmlhttp://www.virusbtn.com/conference/vb2010/abstracts/LastMinute8.xmlhttp://www.computerworld.com/s/article/9185919/Is_Stuxnet_the_best_malware_ever_http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100716-%281%29http://www.securelist.com/en/blog/2291/Myrtus_and_Guava_Episode_MS10_061http://www.symantec.com/connect/blogs/stuxnet-using-three-additional-zero-day-vulnerabilitieshttp://www.virusbtn.com/conference/vb2010/abstracts/LastMinute7.xmlhttp://www.virusbtn.com/conference/vb2010/abstracts/LastMinute8.xml
2010-10-08
Published
Exploited in the wild