CVE-2010-3130

TechSmith Snagit 10.x-11.x - Untrusted Search Path and DLL Hijacking via dwmapi.dll

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3130. PoCs published by Encrypt3d.M!nd.

AI-analyzed exploit summary This exploit leverages DLL hijacking in TechSmith Snagit 10 (Build 788) by masquerading as 'dwmapi.dll'. When placed in the same directory as affected file types (snag, snagcc, snagprof), it executes arbitrary code (calc.exe) via WinExec during application startup.

Description

Untrusted search path vulnerability in TechSmith Snagit all versions 10.x and 11.x allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a snag, snagcc, or snagprof file.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Encrypt3d.M!nd · clocalwindows
https://www.exploit-db.com/exploits/14764

This exploit leverages DLL hijacking in TechSmith Snagit 10 (Build 788) by masquerading as 'dwmapi.dll'. When placed in the same directory as affected file types (snag, snagcc, snagprof), it executes arbitrary code (calc.exe) via WinExec during application startup.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: TechSmith Snagit 10 (Build 788)
No auth needed
Prerequisites: Access to the target system's file system · Ability to place the malicious DLL in the same directory as an affected file type
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/41124
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6668
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/14764

Scores

EPSS 0.0799
EPSS Percentile 94.0%

Details

Status published
Products (1)
techsmith/snagit 10.0.0
Published Aug 26, 2010
Tracked Since Feb 18, 2026