CVE-2010-1900

CVE Database · CVE-2010-1900

CVE-2010-1900

· N/AModified

CVSS v3.1

N/A

EPSS

39.81%

Published

Aug 11, 2010

Modified

Apr 28, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBMicrosoft Word 2007 SP2 - sprmCMajority Buffer Overflow

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP2; Microsoft Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Word Viewer; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; and Works 9 do not properly handle malformed records in a Word file, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, aka "Word Record Parsing Vulnerability."

Weaknesses (CWE)

CWE-94

Affected Products (9)

microsoft · wordvulnerable

microsoft · officevulnerable

microsoft · open_xml_file_format_convertervulnerable

microsoft · office_compatibility_packvulnerable

microsoft · office_word_viewervulnerable

microsoft · worksvulnerable

References (6)

http://www.us-cert.gov/cas/techalerts/TA10-222A.html

US Government Resource