CVE-2010-3963
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Buffer overflow in the Routing and Remote Access NDProxy component in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application, related to the Routing and Remote Access service (RRAS) and improper copying from user mode to the kernel, aka "Kernel NDProxy Buffer Overflow Vulnerability."
Desbordamiento de búfer en el componente Routing and Remote Access NDProxy en el kernel en Microsoft Windows XP SP2 y SP3 y Server 2003 SP2 permite a usuarios locales ganar privilegios mediante una aplicación manipulada, relacionado con el Servicio de enrutamiento y acceso remoto (RRAS) y una incorrecta copia desde el modo usuario al kernel, también conocido como vulnerabilidad de "desbordamiento de búfer en el kernel NDProxy".
CVSS Scores
SSVC
- Decision:-
Timeline
- 2010-10-14 CVE Reserved
- 2010-12-16 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/69823 | Vdb Entry | |
| http://www.securityfocus.com/bid/45269 | Vdb Entry | |
| http://www.securitytracker.com/id?1024881 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA10-348A.html | Third Party Advisory | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12461 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/42613 | 2019-02-26 | |
| http://www.vupen.com/english/advisories/2010/3221 | 2019-02-26 | |
| https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-099 | 2019-02-26 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Microsoft Search vendor "Microsoft" | Windows 2003 Server Search vendor "Microsoft" for product "Windows 2003 Server" | * | sp2 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows Server 2003 Search vendor "Microsoft" for product "Windows Server 2003" | * | sp2 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows Xp Search vendor "Microsoft" for product "Windows Xp" | * | sp3 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows Xp Search vendor "Microsoft" for product "Windows Xp" | - | sp2, x64 |
Affected
| ||||||