CVE-2010-2568
Microsoft Windows Remote Code Execution Vulnerability
CVSS
—
Sin CVSS
EPSS
91.3%
p100
KEV
SÍ
15 sept 2022
Exploit Today
80
0-100
Publicado: — · Última mod.: —
Producto
Microsoft / Windows
Vulnerabilidad
Microsoft Windows Remote Code Execution Vulnerability
Añadido a KEV
15 sept 2022
Remediar antes de
6 oct 2022
Uso conocido en ransomware
No
Descripción resumida
Microsoft Windows incorrectly parses shortcuts in such a way that malicious code may be executed when the operating system displays the icon of a malicious shortcut file. An attacker who successfully exploited this vulnerability could execute code as the logged-on user.
Acción requerida
Apply updates per vendor instructions.
Notas
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-046; https://nvd.nist.gov/vuln/detail/CVE-2010-2568