CVE-2010-3135

Cisco Packet Tracer 5.2 - Untrusted Search Path and DLL Hijacking via Trojan Horse wintab32.dll

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3135. PoCs published by CCNA.

AI-analyzed exploit summary This exploit leverages DLL hijacking in Cisco Packet Tracer 5.2 by replacing the legitimate wintab32.dll with a malicious version. The PoC exports all expected functions but executes arbitrary code (a simple MessageBox) when any function is called.

Description

Untrusted search path vulnerability in Cisco Packet Tracer 5.2 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll that is located in the same folder as a .pkt or .pkz file.

Exploits (1)

exploitdb WORKING POC

by CCNA · clocalwindows

https://www.exploit-db.com/exploits/14774

View Code ZIP pw:eip

This exploit leverages DLL hijacking in Cisco Packet Tracer 5.2 by replacing the legitimate wintab32.dll with a malicious version. The PoC exports all expected functions but executes arbitrary code (a simple MessageBox) when any function is called.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Cisco Packet Tracer 5.2

No auth needed

Prerequisites: Victim must open a .pkt or .pkz file in Cisco Packet Tracer 5.2 · Malicious wintab32.dll must be placed in the same directory as the file

MITRE ATT&CK

T1574.001 - DLL

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/64483

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/14774

Scores

EPSS 0.0824

EPSS Percentile 94.2%

Details

Status published

Products (1)

cisco/packet_tracer 5.2

Published Aug 26, 2010

Tracked Since Feb 18, 2026