CVE-2010-3227

Microsoft MFC Library - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in the UpdateFrameTitleForDocument method in the CFrameWnd class in mfc42.dll in the Microsoft Foundation Class (MFC) Library in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows context-dependent attackers to execute arbitrary code via a long window title that this library attempts to create at the request of an application, as demonstrated by the Trident PowerZip 7.2 Build 4010 application, aka "Windows MFC Document Title Updating Buffer Overflow Vulnerability."

Exploits (1)

exploitdb WORKING POC VERIFIED

by fl0 fl0w · cdoswindows

https://www.exploit-db.com/exploits/13921

View Code ZIP pw:eip

References (5)

[Various Sources] http://www.eeye.com/Resources/Security-Center/Research/Zero-Day-Tracker/2010/20100705-%281%29

[Exploit, Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/13921/

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1024557

[Third Party Advisory] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6696

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-074

Scores

EPSS 0.3549

EPSS Percentile 97.1%

Details

CWE

CWE-119

Status published

Products (6)

microsoft/windows_7

microsoft/windows_server_2003

microsoft/windows_server_2008 (2 CPE variants)

microsoft/windows_vista (2 CPE variants)

microsoft/windows_xp

microsoft/windows_xp sp3

Published Oct 26, 2010

Tracked Since Feb 18, 2026