CVE-2010-3973

The WMITools ActiveX control in WBEMSingleView.ocx 1.50.1131.0 in Microsoft WMI Administrative Tools 1.1 and earlier in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via a crafted argument to the AddContextRef method, possibly an untrusted pointer dereference, aka "Microsoft WMITools ActiveX Control Vulnerability."
Configurations

Configuration 1 (hide)

cpe:2.3:a:microsoft:wmi_administrative_tools:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-12-23 18:00

Updated : 2024-02-28 11:41


NVD link : CVE-2010-3973

Mitre link : CVE-2010-3973

CVE.ORG link : CVE-2010-3973


JSON object : View

Products Affected

microsoft

  • wmi_administrative_tools
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')