CVE-2010-5230

MicroStation 7.1 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-5230. PoCs published by otofoto.

AI-analyzed exploit summary The repository describes DLL hijacking vulnerabilities in multiple software products but does not include actual exploit code. Instead, it provides external download links to purported PoCs, which is a common tactic for distributing malware or fake exploits.

Description

Multiple untrusted search path vulnerabilities in MicroStation 7.1 allow local users to gain privileges via a Trojan horse (1) mptools.dll, (2) baseman.dll, (3) wintab32.dll, or (4) wintab.dll file in the current working directory, as demonstrated by a directory that contains a .hln or .rdl file. NOTE: some of these details are obtained from third party information.

Exploits (1)

nomisec SUSPICIOUS
by otofoto · poc
https://github.com/otofoto/CVE-2010-5230

The repository describes DLL hijacking vulnerabilities in multiple software products but does not include actual exploit code. Instead, it provides external download links to purported PoCs, which is a common tactic for distributing malware or fake exploits.

Classification
Suspicious 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Theoretical
Target: Bentley MicroStation 7.1, Nero 8.2.8.0, QuickTime PictureViewer 7.6.5
No auth needed
Prerequisites: Local access to the target system · Ability to place a malicious DLL in the current working directory
MITRE ATT&CK
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0320.html
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/41106

Scores

EPSS 0.0087
EPSS Percentile 54.3%

Details

Status published
Products (1)
bentley/microstation 7.1
Published Sep 07, 2012
Tracked Since Feb 18, 2026