CVE-2002-1831

2022-10-0316:23:46

mitre

www.cve.org

microsoft

msn messenger service

denial of service

invite request

hex-encoded spaces

6.6 Medium

AI Score

Confidence

High

0.421 Medium

EPSS

Percentile

97.3%

JSON

Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via an invite request that contains hex-encoded spaces (%20) in the Invitation-Cookie field.

References

online.securityfocus.com/archive/1/274086

www.iss.net/security_center/static/9161.php

www.securityfocus.com/bid/4827