CVE-2010-0254

CVE Database · CVE-2010-0254

CVE-2010-0254

· N/AModified

CVSS v3.1

N/A

EPSS

17.92%

Published

Apr 14, 2010

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Office Visio 2002 SP2, 2003 SP3, and 2007 SP1 and SP2 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka "Visio Attribute Validation Memory Corruption Vulnerability."

Weaknesses (CWE)

CWE-94

Affected Products (4)

microsoft · visiovulnerable

References (6)

http://www.us-cert.gov/cas/techalerts/TA10-103A.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-028

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6819

http://www.us-cert.gov/cas/techalerts/TA10-103A.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-028

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6819

KEV Catalog EPSS Scores Vendors All CVEs