CVE-2010-3142

CVE Database · CVE-2010-3142

CVE-2010-3142

· N/AModified

CVSS v3.1

N/A

EPSS

16.31%

Published

Aug 27, 2010

Modified

Apr 28, 2026

Public PoC / Exploit (3)

All weaponized →

Exploit-DBMicrosoft PowerPoint 2007 - 'rpawinet.dll' DLL Hijacking Exploit-DBMicrosoft PowerPoint 2010 - 'pptimpconv.dll' DLL Hijacking TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Untrusted search path vulnerability in Microsoft Office PowerPoint 2007 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse rpawinet.dll that is located in the same folder as a .odp, .pothtml, .potm, .potx, .ppa, .ppam, .pps, .ppt, .ppthtml, .pptm, .pptxml, .pwz, .sldm, .sldx, and .thmx file.

Affected Products (1)

microsoft · powerpointvulnerable

References (4)

http://www.exploit-db.com/exploits/14782/

Exploit

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12219

http://www.exploit-db.com/exploits/14782/

Exploit

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12219

KEV Catalog EPSS Scores Vendors All CVEs