Unrated severityNVD Advisory· Published Jun 15, 2010· Updated Apr 29, 2026

CVE-2010-0990

Description

Stack-based buffer overflow in Creative Software AutoUpdate Engine ActiveX Control 2.0.12.0, as used in Creative Software AutoUpdate 1.40.01, allows remote attackers to execute arbitrary code via vectors related to the BrowseFolder method.

Affected products

Creative/Autoupdate
cpe:2.3:a:creative:autoupdate:1.40.01:*:*:*:*:*:*:*
Creative/Autoupdate Engine Activex Control
cpe:2.3:a:creative:autoupdate_engine_activex_control:2.0.12.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/38970nvdVendor Advisory
secunia.com/secunia_research/2010-52/nvdVendor Advisory
www.securityfocus.com/archive/1/511795/100/0/threadednvd
www.securityfocus.com/bid/40768nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000