22 matches found
EUVD-2009-2539
Malware in sbrugna...
Microsoft Windows Live Mail 2009 (Build 14.0.8089.0726) DLL Hijacking
Exploit for windows platform in category local exploits / ========================================================================================== Microsoft Windows Live Mail 2009 Build 14.0.8089.0726 DLL Hijacking Exploit dwmapi.dll...
Microsoft Windows Live Email - dwmapi.dll DLL Hijacking
Microsoft Windows Live Email - dwmapi.dll DLL Hijacking / Exploit Title: Windows Live Email DLL Hijacking Exploit dwmapi.dll Date: 24/08/2010 Author: Nicolas Krassas http://twitter.com/Dinosn Version: Latest windows live suite Tested on: Windows XP SP3 The code is based on the exploit from...
Microsoft Windows Live Email - 'dwmapi.dll' DLL Hijacking
/ Exploit Title: Windows Live Email DLL Hijacking Exploit dwmapi.dll Date: 24/08/2010 Author: Nicolas Krassas http://twitter.com/Dinosn Version: Latest windows live suite Tested on: Windows XP SP3 The code is based on the exploit from "TheLeader" Vulnerable extensions: .eml .nws .rss / include...
Microsoft Windows Live Messenger 2009 - ActiveX Heap Overflow (PoC)
Microsoft Windows Live Messenger 2009 - ActiveX Heap Overflow PoC Aouther : SarBoT511 [email protected] Exploits title :Windows Live Messenger 2009 ActiveX Heap Overflow PoC tested on :windows 7 & Vista & Xp sp3 Windows Live Messenger SkyDrive 2009 targetFile = "C:\Program Files\Windows Live...
Microsoft Windows Live Messenger DoS
Crash on ActiveX ViewProfile method...
Valentina Cookie Handling Privilege Escalation
Cyber-Warrior & Security TIM - Bug Researchers Group Application Name : Valentina Vulnerable Type : Cookie Handling Vulnerebility Infection : SQL Info GET... Author : Septemb0x Script Down.& WebSite : http://s2.dosya.tc/valentina.zip.html - http://www.valya.ru Cyber-Warrior & Security TIM - Bug...
CVE-2009-2544
Directory traversal vulnerability in the Marcelo Costa FileServer component 1.0 for Microsoft Windows Live Messenger and Messenger Plus! Live MPL allows remote authenticated users to list arbitrary directories and read arbitrary files via a .. dot dot in a pathname...
Directory traversal
Directory traversal vulnerability in the Marcelo Costa FileServer component 1.0 for Microsoft Windows Live Messenger and Messenger Plus! Live MPL allows remote authenticated users to list arbitrary directories and read arbitrary files via a .. dot dot in a pathname...
CVE-2009-2544
Directory traversal vulnerability in the Marcelo Costa FileServer component 1.0 for Microsoft Windows Live Messenger and Messenger Plus! Live MPL allows remote authenticated users to list arbitrary directories and read arbitrary files via a .. dot dot in a pathname...
Microsoft Windows Live Messenger Information Disclosure Vulnerability
Windows Live Messenger Client is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Microsoft Windows Live Messenger Client Version Detection
Detects the installed version of Microsoft Windows Live Messenger. The script logs in via smb, searches for Microsoft Windows Live Messenger in the registry and gets the version from registry. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced...
MSN messenger IP地址泄露漏洞
CVECAN ID: CVE-2008-5828 MSN messenger是Windows操作系统默认捆绑的即时消息聊天客户端。 如果在NAT会话上使用了MSN协议版本15(MSNP15),Windows Live Messenger客户端允许远程攻击者通过读取Ipv4ExternalAddrsAndPorts、Ipv4InternalAddrsAndPorts头字段找到内部IP地址和端口号。...
Design/Logic Flaw
Microsoft Windows Live Messenger Client 8.5.1 and earlier, when MSN Protocol Version 15 MSNP15 is used over a NAT session, allows remote attackers to discover intranet IP addresses and port numbers by reading the 1 IPv4InternalAddrsAndPorts, 2 IPv4Internal-Addrs, and 3 IPv4Internal-Port header...
CVE-2008-5828
Microsoft Windows Live Messenger Client 8.5.1 and earlier, when MSN Protocol Version 15 MSNP15 is used over a NAT session, allows remote attackers to discover intranet IP addresses and port numbers by reading the 1 IPv4InternalAddrsAndPorts, 2 IPv4Internal-Addrs, and 3 IPv4Internal-Port header...
CVE-2008-5828
Microsoft Windows Live Messenger Client (
Microsoft Windows RTCP Unspecified Remote DoS Vulnerability
Microsoft Live Messenger is prone to a remote Denial of Service vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Live Messenger联系人列表处理远程拒绝服务漏洞
BUGTRAQ ID: 18639 Windows Live Messenger是微软即将推出的Windows Live产品系列的一个重要组成部分,它将是新一代的MSN Messenger。 Live Messenger在处理畸形的联系人列表(.ctt)文件时存在堆溢出漏洞,如果用户受骗导入了恶意的.ctt文件的话,就会触发这个漏洞,导致拒绝服务。 Microsoft Windows Live Messenger 8.0 Microsoft --------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
Microsoft MSN Messenger Video Conversation Buffer Overflow Vulnerability
Description Microsoft MSN Messenger is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application. Failed exploit attemp...
CVE-2006-6252
Microsoft Windows Live Messenger 8.0 and earlier, when gestual emoticons are enabled, allows remote attackers to cause a denial of service CPU consumption via a long string composed of ":D" sequences, which are interpreted as emoticons...