CVE Reference: CVE-2010-3146

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-3146

Description:
Multiple untrusted search path vulnerabilities in Microsoft Groove 2007 SP2 allow local users to gain privileges via a Trojan horse (1) mso.dll or (2) GroovePerfmon.dll file in the current working directory, as demonstrated by a directory that contains a Groove vCard (.vcg) or Groove Tool Archive (.gta) file, aka "Microsoft Groove Insecure Library Loading Vulnerability."

CVE Status:
Candidate

References:

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12632

MS
  http://www.microsoft.com/technet/security/Bulletin/MS11-016.mspx

EXPLOIT-DB
  http://www.exploit-db.com/exploits/14746/

CERT
  http://www.us-cert.gov/cas/techalerts/TA11-067A.html


Return to the previous page.