Lucene search
MitreCVE-2010-0278HistoryJan 12, 2010 - 5:30 p.m.
CVE-2010-0278
2010-01-1217:30:01
mitre
web.nvd.nist.gov
24
cve-2010-0278
microsoft windows
live messenger
activex control
denial of service
remote attackers
vulnerability
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
6.8
Confidence
High
EPSS
0.079
Percentile
94.4%
A certain ActiveX control in msgsc.14.0.8089.726.dll in Microsoft Windows Live Messenger 2009 build 14.0.8089.726 on Windows Vista and Windows 7 allows remote attackers to cause a denial of service (msnmsgr.exe crash) by calling the ViewProfile method with a crafted argument during an MSN Messenger session.
Affected configurations
Node
microsoftwindows_live_messengerMatch2009
microsoftwindows_7
ORmicrosoftwindows_vista
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_live_messenger | 2009 | cpe:2.3:a:microsoft:windows_live_messenger:2009:*:*:*:*:*:*:* |
| microsoft | windows_7 | * | cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:* |
| microsoft | windows_vista | * | cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2010-0278
2010-01-12 17:00:00
exploitdb
exploitdb
Microsoft Windows Live Messenger 2009 - ActiveX Denial of Service
2010-01-08 00:00:00
nvd
nvd
CVE-2010-0278
2010-01-12 17:30:01
prion
prion
Session fixation
2010-01-12 17:30:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
AI Score
6.8
Confidence
High
EPSS
0.079
Percentile
94.4%
Related for CVE-2010-0278