CVE-2010-1880

CVE Database · CVE-2010-1880

CVE-2010-1880

· N/AModified

CVSS v3.1

N/A

EPSS

21.22%

Published

Jun 8, 2010

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Unspecified vulnerability in Quartz.dll for DirectShow on Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1, and Server 2008 allows remote attackers to execute arbitrary code via a media file with crafted compression data, aka "MJPEG Media Decompression Vulnerability."

Weaknesses (CWE)

CWE-94

Affected Products (15)

microsoft · directxvulnerable

microsoft · windows_2000

microsoft · windows_2003_server

microsoft · windows_server_2008

microsoft · windows_vista

References (8)

http://osvdb.org/65222

http://www.us-cert.gov/cas/techalerts/TA10-159B.html

US Government Resource