CVE-2010-3145

Name of the Vulnerable Software and Affected Versions Microsoft Windows Vista SP1 and SP2

Description The issue allows local users to gain privileges via a Trojan horse fveapi.dll file in the current working directory. A remote code execution vulnerability exists in the way that the Microsoft Windows Backup Manager handles the loading of DLL files. An attacker who successfully exploited this issue could take complete control of an affected system, allowing them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows Vista SP1 and SP2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.