CVE-2010-3976
Description
Untrusted search path vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a file that is processed by Flash Player.
Risk Information
Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
7.653
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Upgrade Adobe flash player 10.0.0.584 to latest version | Windows |
| Multiple vulnerabilities affected in Adobe Flash Player Plugin 10.1.95.2 | Windows |
| Multiple vulnerabilities affected in Adobe Flash Player PPAPI 10.1.95.2 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234