CVE-2010-0239

Windows Vista and Server 2008 - Remote Code Execution via ICMPv6 Router Advertisement

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0239. PoCs published by Sumit Gwalani.

AI-analyzed exploit summary This exploit targets a vulnerability in Microsoft Windows TCP/IP protocol implementation (CVE-2010-0239) by sending a malformed IPv6 packet with a fragmented header and an oversized ICMPv6NDOptPrefixInfo option. The goal is to achieve remote code execution with SYSTEM privileges or cause a denial-of-service condition.

Description

The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when IPv6 is enabled, does not properly perform bounds checking on ICMPv6 Router Advertisement packets, which allows remote attackers to execute arbitrary code via crafted packets, aka "ICMPv6 Router Advertisement Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Sumit Gwalani · textremotewindows

https://www.exploit-db.com/exploits/33594

View Code ZIP pw:eip

This exploit targets a vulnerability in Microsoft Windows TCP/IP protocol implementation (CVE-2010-0239) by sending a malformed IPv6 packet with a fragmented header and an oversized ICMPv6NDOptPrefixInfo option. The goal is to achieve remote code execution with SYSTEM privileges or cause a denial-of-service condition.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Racy

Target: Microsoft Windows TCP/IP stack (affected versions include Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2)

No auth needed

Prerequisites: Network access to the target system · Target system must have IPv6 enabled · Knowledge of the target's IPv6 and MAC address

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8478

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-009

US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA10-040A.html

Scores

EPSS 0.4899

EPSS Percentile 97.8%

Details

CWE

CWE-94

Status published

Products (2)

microsoft/windows_server_2008 (7 CPE variants)

microsoft/windows_vista (4 CPE variants)

Published Feb 10, 2010

Tracked Since Feb 18, 2026