What is the severity of CVE-2010-5174?

The severity of CVE-2010-5174 is considered moderate due to its potential to bypass security measures.

How do I fix CVE-2010-5174?

To fix CVE-2010-5174, ensure that Prevx is updated to a version that addresses this vulnerability.

Who is affected by CVE-2010-5174?

CVE-2010-5174 affects users of Prevx version 3.0.5.143 running on Windows XP.

What causes CVE-2010-5174?

CVE-2010-5174 is caused by a race condition that allows local users to manipulate memory and bypass security hooks.

Is CVE-2010-5174 exploitable?

Yes, CVE-2010-5174 is exploitable by local users to execute code that is normally blocked by Prevx security measures.

Vulnerability/
CVE-2010-5174

medium

6.2

CWE

362

25/8/2012

7/8/2024

CVE-2010-5174: Race Condition

First published: Sat Aug 25 2012(Updated: )

** DISPUTED ** Race condition in Prevx 3.0.5.143 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted program has already begun to execute.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Prevx Prevx	=3.0.5.143
Microsoft Windows XP
All of
Prevx Prevx	=3.0.5.143
Microsoft Windows XP

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-5174?
The severity of CVE-2010-5174 is considered moderate due to its potential to bypass security measures.
How do I fix CVE-2010-5174?
To fix CVE-2010-5174, ensure that Prevx is updated to a version that addresses this vulnerability.
Who is affected by CVE-2010-5174?
CVE-2010-5174 affects users of Prevx version 3.0.5.143 running on Windows XP.
What causes CVE-2010-5174?
CVE-2010-5174 is caused by a race condition that allows local users to manipulate memory and bypass security hooks.
Is CVE-2010-5174 exploitable?
Yes, CVE-2010-5174 is exploitable by local users to execute code that is normally blocked by Prevx security measures.

collector/nvd-historical
collector/nvd-index
agent/type
agent/first-publish-date
agent/references
agent/severity
agent/weakness
agent/author
agent/status
agent/description
agent/softwarecombine
agent/tags
agent/event
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
agent/source
status/disputed
vendor/prevx
canonical/prevx prevx
version/prevx prevx/3.0.5.143
vendor/microsoft
canonical/microsoft windows xp

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2010-5174?
The severity of CVE-2010-5174 is considered moderate due to its potential to bypass security measures.
How do I fix CVE-2010-5174?
To fix CVE-2010-5174, ensure that Prevx is updated to a version that addresses this vulnerability.
Who is affected by CVE-2010-5174?
CVE-2010-5174 affects users of Prevx version 3.0.5.143 running on Windows XP.
What causes CVE-2010-5174?
CVE-2010-5174 is caused by a race condition that allows local users to manipulate memory and bypass security hooks.
Is CVE-2010-5174 exploitable?
Yes, CVE-2010-5174 is exploitable by local users to execute code that is normally blocked by Prevx security measures.