CVE-2010-3227

Microsoft MFC Library - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-3227. PoCs published by fl0 fl0w.

AI-analyzed exploit summary This exploit demonstrates a stack buffer overflow in PowerZip 7.21 (Build 4010) via a maliciously crafted ZIP file. The PoC generates a file that triggers the vulnerability, though it is noted as non-exploitable due to an exit call.

Description

Stack-based buffer overflow in the UpdateFrameTitleForDocument method in the CFrameWnd class in mfc42.dll in the Microsoft Foundation Class (MFC) Library in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows context-dependent attackers to execute arbitrary code via a long window title that this library attempts to create at the request of an application, as demonstrated by the Trident PowerZip 7.2 Build 4010 application, aka "Windows MFC Document Title Updating Buffer Overflow Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by fl0 fl0w · cdoswindows

https://www.exploit-db.com/exploits/13921

View Code ZIP pw:eip

This exploit demonstrates a stack buffer overflow in PowerZip 7.21 (Build 4010) via a maliciously crafted ZIP file. The PoC generates a file that triggers the vulnerability, though it is noted as non-exploitable due to an exit call.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: PowerZip 7.21 (Build 4010)

No auth needed

Prerequisites: Victim must open the maliciously crafted ZIP file

MITRE ATT&CK

T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1024557

Third Party Advisory vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6696

Various Sources x_refsource_misc

http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100705-%281%29

Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/13921/

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-074

Scores

EPSS 0.2114

EPSS Percentile 97.3%

Details

CWE

CWE-119

Status published

Products (6)

microsoft/windows_7

microsoft/windows_server_2003

microsoft/windows_server_2008 (2 CPE variants)

microsoft/windows_vista (2 CPE variants)

microsoft/windows_xp

microsoft/windows_xp sp3

Published Oct 26, 2010

Tracked Since Feb 18, 2026