FortiClient VulnerabilityMicrosoft MFC CVE-2010-3190 Insecure Library Loading Vulnerability
Description
A remote code execution vulnerability exists in the way that certain applications built using Microsoft Foundation Classes (MFC) handle the loading of DLL files. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The update addresses this vulnerability by correcting how applications built using MFC load DLL files.
Affected Applications
Microsoft Exchange Server 2016
Microsoft Exchange Server 2013
Microsoft Exchange Server 2010 Service Pack 3
CVE References
CVE-2010-3190Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2010-3190| ID | 51873 |
| Created | Oct 09, 2018 |
| Description Updated |
Dec 21, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Microsoft Exchange Server 2016 , Microsoft Exchange Server 2013 , Microsoft Exchange Server 2010 Service Pack 3 |