Unrated severityNVD Advisory· Published Jan 12, 2010· Updated Apr 23, 2026

CVE-2010-0278

Description

A certain ActiveX control in msgsc.14.0.8089.726.dll in Microsoft Windows Live Messenger 2009 build 14.0.8089.726 on Windows Vista and Windows 7 allows remote attackers to cause a denial of service (msnmsgr.exe crash) by calling the ViewProfile method with a crafted argument during an MSN Messenger session.

Affected products

Microsoft/Windows Live Messenger
cpe:2.3:a:microsoft:windows_live_messenger:2009:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/37680nvdExploit
www.securityfocus.com/archive/1/508811/100/0/threadednvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.023
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000