Oval Definition:oval:org.mitre.oval:def:12457
Revision Date:2015-08-10Version:60
Title:MFC Insecure Library Loading Vulnerability
Description:Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft Visual Studio .NET 2003 SP1; Visual Studio 2005 SP1, 2008 SP1, and 2010; and Visual C++ 2005 SP1, 2008 SP1, and 2010 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory during execution of an MFC application such as AtlTraceTool8.exe (aka ATL MFC Trace Tool), as demonstrated by a directory that contains a TRC, cur, rs, rct, or res file, aka "MFC Insecure Library Loading Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-3190
Platform(s):Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Microsoft Visual C++ 2005 Redistributable Package
Microsoft Visual C++ 2008 Redistributable Package
Microsoft Visual C++ 2010 Redistributable Package
Microsoft Visual Studio .NET 2003
Microsoft Visual Studio 2005
Microsoft Visual Studio 2008
Microsoft Visual Studio 2010
Definition Synopsis
  • Microsoft Visual Studio .NET 2003 SP1
  • Microsoft Visual Studio .NET 2003 SP1 is installed
  • AND the version of Mfc71.dll is less than 7.10.6119.0
  • OR Microsoft Visual Studio 2005 SP1
  • Microsoft Visual Studio 2005 Service Pack 1 is installed
  • AND the version of ATL80.dll is less than 8.0.50727.6195
  • OR Microsoft Visual Studio 2008
  • Microsoft Visual Studio 2008 is installed
  • AND the version of ATL90.dll is less than 9.0.30729.6161
  • OR Microsoft Visual Studio 2010
  • Microsoft Visual Studio 2010 is installed
  • AND the version of ATL100.dll is less than 10.0.30319.460
  • OR Microsoft Visual C++ 2005 Redistributable Package
  • Microsoft Visual C++ 2005 Redistributable Package is installed
  • the version of %SystemRoot%\WinSxS\(x86|amd64)_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.[0-9]{1,4}.*\atl80.dll is less than 8.0.50727.6195
  • OR the version of %SystemRoot%\winsxs\(x86|amd64)_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.[0-9]{1,4}.*\atl80.dll is less than 8.0.50727.6195
  • OR Microsoft Visual C++ 2008 Redistributable Package
  • Microsoft Visual C++ 2008 Redistributable Package is installed
  • the version of %SystemRoot%\WinSxS\(x86|amd64)_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.30729.[0-9]{1,4}.*\atl90.dll is less than 9.0.30729.6161
  • OR the version of %SystemRoot%\winsxs\(x86|amd64)_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.[0-9]{1,4}.*\atl90.dll is less than 9.0.30729.6161
  • OR Microsoft Visual C++ 2010 Redistributable Package
  • Microsoft Visual C++ 2010 Redistributable Package is installed
  • AND the version of %systemroot%\system32\atl100.dll is less than 10.0.30319.415
    • BACK