Vulnerability Details CVE-2010-0278
A certain ActiveX control in msgsc.14.0.8089.726.dll in Microsoft Windows Live Messenger 2009 build 14.0.8089.726 on Windows Vista and Windows 7 allows remote attackers to cause a denial of service (msnmsgr.exe crash) by calling the ViewProfile method with a crafted argument during an MSN Messenger session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.241
EPSS Ranking 95.8%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2010-0278
-
cpe:2.3:a:microsoft:windows_live_messenger:2009
-
cpe:2.3:o:microsoft:windows_7:-
-
cpe:2.3:o:microsoft:windows_7:sp1
-
cpe:2.3:o:microsoft:windows_vista:-