What is CVE-2010-3970?

CVE-2010-3970 is a vulnerability in Microsoft Windows_server_2003, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2010-12-22.

Is CVE-2010-3970 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Microsoft Windows_server_2003

CVE-2010-3970

Stack-based buffer overflow in the CreateSizedDIBSECTION function in shimgvw.dll in the Windows Shell graphics processor (aka graphics rendering engine) in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 20…

Vulnerability class: Buffer Overflow

EPSS: 0.812 (99.2th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

References

VU#106516 (x_refsource_CERT-VN, US Government Resource, third-party-advisory)
MS11-006 (x_refsource_MS, vendor-advisory)
secure@microsoft.com (x_refsource_MISC)
oval:org.mitre.oval:def:11671 (x_refsource_OVAL, signature, vdb-entry)
secure@microsoft.com (x_refsource_MISC)
secure@microsoft.com (Exploit, x_refsource_MISC)
secure@microsoft.com (x_refsource_MISC, Vendor Advisory)
ADV-2011-0018 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
42779 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
45662 (Exploit, vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2010-3970?: CVE-2010-3970 is a vulnerability in Microsoft Windows_server_2003, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2010-12-22.
Is CVE-2010-3970 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.