Vulnerability detail
Enriched intelligence for a single CVE
High
CVE-2010-3888
PUBLISHEDUnspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the...
- Vendor
- Microsoft
- Product
- Windows
- Published
- Oct 08, 2010
- EPSS
- —
Automate this intelligence with the Pro API
Everything on this page — CVSS, EPSS, exploit status, PoCs, scanner integrations, mentions, tags, and immediate honeypot data — is available programmatically for VM, SOC, and CTI workflows.
Description
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Kaspersky Lab researchers and other researchers.
CVSS scores
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitation status
Exploited in the wild
Recorded 2010-10-08 21:00:00 UTC · CVE
References
- http://www.virusbtn.com/conference/vb2010/abstracts/LastMinute7.xml
- http://www.symantec.com/connect/blogs/stuxnet-using-three-additional-zero-day-vulnerabilities
- http://www.computerworld.com/s/article/9185919/Is_Stuxnet_the_best_malware_ever_
- http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100716
- http://www.virusbtn.com/conference/vb2010/abstracts/LastMinute8.xml
- http://www.securelist.com/en/blog/2291/Myrtus_and_Guava_Episode_MS10_061
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CVE First | 2010-10-08 21:00 UTC |
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Added to KEVIntel