15 matches found
Microsoft MSN Messenger <= 8.0 - Video Conversation Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25461/info Microsoft MSN Messenger is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to...
Microsoft MSN Messenger Service Version Detection
Detects the installed version of Microsoft MSN Messenger. The script logs in via smb, searches for Microsoft MSN Messenger in the registry and gets the exe file path from Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyrigh...
Microsoft MSN Messenger and Windows Live Messenger Remote Code Execution Vulnerability (942099) (deprecated)
Binary data 4211.prm...
Microsoft MSN Messenger Video Conversation Buffer Overflow Vulnerability
Description Microsoft MSN Messenger is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application. Failed exploit attemp...
Microsoft MSN Messenger 8.0 - Video Conversation Buffer Overflow
Microsoft MSN Messenger 8.0 - Video Conversation Buffer Overflow source: https://www.securityfocus.com/bid/25461/info Microsoft MSN Messenger is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue...
Windows Messenger is installed
This host is installed with Microsoft Windows Messenger and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: winmessengerinstalled.nasl 6053 2017-05-01 09:02:51Z teissa $ Description: Windows Messenger is installed Authors: Xue Yong Zhi Copyright: Copyright C 2003 Xue Yong Zh...
CVE-2005-2225
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so...
CVE-2005-2225
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so...
EUVD-2005-2226
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so...
Microsoft MSN "Hrtbeat.ocx" ActiveX control contains unspecified vulnerability
Overview A vulnerability exists in the Microsoft MSN "Hrtbeat.ocx" ActiveX control. Description ActiveX is a technology that allows programmers to create reusable software components that can be incorporated into applications to extend their functionality. Microsoft Internet Explorer provides...
CVE-2004-0122
Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote attackers to read arbitrary files...
CVE-2002-0155
CVE-2002-0155 describes a buffer overflow in the Microsoft MSN Chat ActiveX control (MSNChat OCX) used by MSN Messenger 4.5/4.6 and Exchange Instant Messenger 4.5/4.6. The vulnerability occurs in the ResDLL parameter handling, allowing a remote attacker to execute arbitrary code with the user’s p...
CVE-2002-0155
Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exchange Instant Messenger 4.5 and 4.6, allows remote attackers to execute arbitrary code via a long ResDLL parameter in the MSNChat OCX...
CVE-2002-1831
Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service crash via an invite request that contains hex-encoded spaces %20 in the Invitation-Cookie field...
CVE-2002-0228
Microsoft MSN Messenger allows remote attackers to use Javascript that references an ActiveX object to obtain sensitive information such as display names and web site navigation, and possibly more when the user is connected to certain Microsoft sites or DNS-spoofed sites...