ID CVE-2010-3146
Summary Multiple untrusted search path vulnerabilities in Microsoft Groove 2007 SP2 allow local users to gain privileges via a Trojan horse (1) mso.dll or (2) GroovePerfmon.dll file in the current working directory, as demonstrated by a directory that contains a Groove vCard (.vcg) or Groove Tool Archive (.gta) file, aka "Microsoft Groove Insecure Library Loading Vulnerability." Per: https://technet.microsoft.com/en-us/security/bulletin/ms11-016 Access Vector: Network per "This is a remote code execution vulnerability" Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:groove:2007:sp2:*:*:*:*:*:*
    cpe:2.3:a:microsoft:groove:2007:sp2:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 12-10-2018 - 21:58)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
msbulletin via4
bulletin_id MS11-016
bulletin_url
date 2011-03-08T00:00:00
impact Remote Code Execution
knowledgebase_id 2494047
knowledgebase_url
severity Important
title Vulnerability in Microsoft Groove Could Allow Remote Code Execution
oval via4
accepted 2011-04-25T04:00:18.811-04:00
class vulnerability
contributors
name Josh Turpin
organization Symantec Corporation
definition_extensions
comment Microsoft Office Groove 2007 is installed
oval oval:org.mitre.oval:def:12170
description Multiple untrusted search path vulnerabilities in Microsoft Groove 2007 SP2 allow local users to gain privileges via a Trojan horse (1) mso.dll or (2) GroovePerfmon.dll file in the current working directory, as demonstrated by a directory that contains a Groove vCard (.vcg) or Groove Tool Archive (.gta) file, aka "Microsoft Groove Insecure Library Loading Vulnerability."
family windows
id oval:org.mitre.oval:def:12632
status accepted
submitted 2011-03-08T14:00:00
title Microsoft Groove Insecure Library Loading Vulnerability
version 6
refmap via4
cert TA11-067A
exploit-db 14746
vupen ADV-2010-2188
saint via4
bid 42695
description Microsoft Office Groove Insecure Library Loading
id win_patch_groove
osvdb 67484
title ms_office_groove_library_load
type client
Last major update 12-10-2018 - 21:58
Published 27-08-2010 - 19:00
Last modified 12-10-2018 - 21:58
Back to Top