VYPR
High severity7.8CISA KEVNVD Advisory· Published Jul 22, 2010· Updated Jun 16, 2026

CVE-2010-2568

CVE-2010-2568

Description

Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windows 7 allows local users or remote attackers to execute arbitrary code via a crafted (1) .LNK or (2) .PIF shortcut file, which is not properly handled during icon display in Windows Explorer, as demonstrated in the wild in July 2010, and originally reported for malware that leverages CVE-2010-2772 in Siemens WinCC SCADA systems.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:o:microsoft:windows_7:-:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_server_2008:-:-:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:microsoft:windows_server_2008:-:-:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:itanium:*
    • cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:x64:*
    • cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
  • Microsoft/Windows2 versions
    cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:*:*:*:*
    • cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*+ 1 more
    • cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*
    • cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.