VYPR
Unrated severityNVD Advisory· Published Jun 15, 2010· Updated Jun 16, 2026

CVE-2010-0990

CVE-2010-0990

Description

Stack-based buffer overflow in Creative Software AutoUpdate Engine ActiveX Control 2.0.12.0, as used in Creative Software AutoUpdate 1.40.01, allows remote attackers to execute arbitrary code via vectors related to the BrowseFolder method.

Affected products

3
  • cpe:2.3:a:creative:autoupdate:1.40.01:*:*:*:*:*:*:*
  • cpe:2.3:a:creative:autoupdate_engine_activex_control:2.0.12.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:creative:autoupdate_engine_activex_control:2.0.12.0:*:*:*:*:*:*:*
    • (no CPE)range: =2.0.12.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.