Unrated severityNVD Advisory· Published Jun 15, 2010· Updated Jun 16, 2026
CVE-2010-0990
CVE-2010-0990
Description
Stack-based buffer overflow in Creative Software AutoUpdate Engine ActiveX Control 2.0.12.0, as used in Creative Software AutoUpdate 1.40.01, allows remote attackers to execute arbitrary code via vectors related to the BrowseFolder method.
Affected products
3- cpe:2.3:a:creative:autoupdate:1.40.01:*:*:*:*:*:*:*
cpe:2.3:a:creative:autoupdate_engine_activex_control:2.0.12.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:creative:autoupdate_engine_activex_control:2.0.12.0:*:*:*:*:*:*:*
- (no CPE)range: =2.0.12.0
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/38970nvdVendor Advisory
- secunia.com/secunia_research/2010-52/nvdVendor Advisory
- www.securityfocus.com/archive/1/511795/100/0/threadednvd
- www.securityfocus.com/bid/40768nvd
News mentions
0No linked articles in our index yet.