CVE-2010-3143
CVE-2010-3143 describes an insecure DLL search path (untrusted library loading) in Windows Address Book/Contacts. An attacker could place a malicious wab32res.dll in the same folder as a .contact/.group/.p7c/.vcf/.wab file to trigger arbitrary code execution. This is a local/remote‑initiated DLL ...