CVE-2010-3144

Microsoft Windows XP/SP3-Server 2003 SP2 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3144. PoCs published by Beenu Arora.

AI-analyzed exploit summary This exploit demonstrates a DLL hijacking vulnerability in Microsoft Internet Connection Signup Wizard by compiling a malicious DLL (smmscrpt.dll) that executes arbitrary code (calc.exe) when a file with a vulnerable extension (.isp) is opened. The exploit leverages the insecure DLL loading behavior in Windows.

Description

Untrusted search path vulnerability in the Internet Connection Signup Wizard in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a Trojan horse smmscrpt.dll file in the current working directory, as demonstrated by a directory that contains an ISP or INS file, aka "Internet Connection Signup Wizard Insecure Library Loading Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by Beenu Arora · textlocalwindows

https://www.exploit-db.com/exploits/14754

View Code ZIP pw:eip

This exploit demonstrates a DLL hijacking vulnerability in Microsoft Internet Connection Signup Wizard by compiling a malicious DLL (smmscrpt.dll) that executes arbitrary code (calc.exe) when a file with a vulnerable extension (.isp) is opened. The exploit leverages the insecure DLL loading behavior in Windows.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Internet Connection Signup Wizard (Windows XP SP3)

No auth needed

Prerequisites: Ability to place a malicious DLL and a file with a vulnerable extension (.isp) in a directory searched by the application

MITRE ATT&CK

T1574.001 - DLL

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5

Core References

US Government Resource third-party-advisory x_refsource_cert

http://www.us-cert.gov/cas/techalerts/TA10-348A.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1024879

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-097

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11993

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/14754/

Scores

EPSS 0.1389

EPSS Percentile 96.1%

Details

Status published

Products (2)

microsoft/windows_server_2003

microsoft/windows_xp (2 CPE variants)

Published Aug 27, 2010

Tracked Since Feb 18, 2026