Lucene search

[email protected]CVE-2010-3888

HistoryOct 08, 2010 - 10:00 p.m.

CVE-2010-3888

2010-10-0822:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2010-3888

microsoft

windows

vulnerability

32-bit

privilege escalation

stuxnet

kaspersky lab

nvd

security

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.4%

JSON

Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Kaspersky Lab researchers and other researchers.

CPENameOperatorVersion
microsoft:windowsmicrosoft windowseq*

CPE	Name	Operator	Version
microsoft:windows	microsoft windows	eq	*

References

www.computerworld.com/s/article/9185919/Is_Stuxnet_the_best_malware_ever_

www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100716

www.securelist.com/en/blog/2291/Myrtus_and_Guava_Episode_MS10_061

www.symantec.com/connect/blogs/stuxnet-using-three-additional-zero-day-vulnerabilities

www.virusbtn.com/conference/vb2010/abstracts/LastMinute7.xml

www.virusbtn.com/conference/vb2010/abstracts/LastMinute8.xml

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

83.4%

JSON

Related for CVE-2010-3888

prion3 cvelist3 cve2 openvas2