CVE-2010-3951

CVE Database · CVE-2010-3951

CVE-2010-3951

· N/AModified

CVSS v3.1

N/A

EPSS

25.11%

Published

Dec 16, 2010

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in the FlashPix image converter in the graphics filters in Microsoft Office XP SP3 and Office Converter Pack allows remote attackers to execute arbitrary code via a crafted FlashPix image in an Office document, aka "FlashPix Image Converter Buffer Overflow Vulnerability."

Weaknesses (CWE)

CWE-119

Affected Products (2)

microsoft · officevulnerable

microsoft · office_converter_packvulnerable

References (8)

http://www.securitytracker.com/id?1024887

http://www.us-cert.gov/cas/techalerts/TA10-348A.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-105

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12350

http://www.securitytracker.com/id?1024887

http://www.us-cert.gov/cas/techalerts/TA10-348A.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-105

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12350

KEV Catalog EPSS Scores Vendors All CVEs