Microsoft Windows: Turn off the Windows Messenger Customer Experience Improvement Program

This policy setting specifies whether Windows Messenger collects anonymous information about how Windows Messenger software and service is used. With the Customer Experience Improvement program, users can allow Microsoft to collect anonymous information about how the product is used. This...

MSN Messenger 6.2.0137 PNG Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12506/info A remotely exploitable buffer overflow exists in MSN Messenger and Windows Messenger. This vulnerability is related to parsing of Portable Network Graphics PNG image header data. Successful exploitation will...

MSN Messenger UIAutomation ActiveX Control Information Disclosure (MS08-050) - Ver2 (CVE-2008-0082)

Windows Messenger, MSN Messenger, and Windows Live Messenger are popular instant messaging clients for Microsoft Windows. An information disclosure vulnerability exists in Windows Messenger, MSN Messenger, and Windows Live Messenger. The vulnerability is caused by an ActiveX control that is marke...

More Malware Moving on Skype

With Skype expanding its reach with services designed for small businesses, and other messaging platforms such as Microsoft Windows Messenger shutting down, Skype is becoming an attractive target for malware writers. Reports surfaced last week of the Shylock financial malware spreading on Skype a...

CVE-2011-1243

The Windows Messenger ActiveX control in msgsc.dll in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via unspecified vectors that "corrupt the system state," aka "Microsoft Windows Messenger ActiveX Control Vulnerability."...

CVE-2011-1243

The CVE-2011-1243 issue affects the Windows Messenger ActiveX control (msgsc.dll) in Windows XP SP2/SP3. The vulnerability allows remote code execution via unspecified vectors that corrupt the system state. Affected product/component: Windows Messenger ActiveX in msgsc.dll. Root cause: control co...

CVE-2011-1243

The Windows Messenger ActiveX control in msgsc.dll in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via unspecified vectors that "corrupt the system state," aka "Microsoft Windows Messenger ActiveX Control Vulnerability."...

Microsoft IE Developer Tools WMITools and Windows Messenger ActiveX Control Vulnerability (2508272)

This host is missing a critical security update according to Microsoft Bulletin MS11-027. OpenVAS Vulnerability Test $Id: secpodms11-027.nasl 8724 2018-02-08 15:02:56Z cfischer $ Microsoft IE Developer Tools WMITools and Windows Messenger ActiveX Control Vulnerability 2508272 Authors: Veerendra G...

Microsoft Windows Messenger ActiveX Control Remote Code Execution Vulnerability

Description Microsoft Windows Messenger ActiveX control 'msgsc.dll' is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Successful exploits will allow the attacker to execute arbitrary code...

Microsoft Windows Messenger msgsc.dll ActiveX Control Corruption (MS11-027; CVE-2011-1243)

Windows Messenger is an instant messaging client by Microsoft. A remote code execution vulnerability has been reported in the Microsoft Windows Messenger ActiveX Control. The vulnerability is caused when the ActiveX control is used in Internet Explorer, the control may corrupt the system state. T...

Checks XP Internetcommunication of some Programs - Windows

The script Checks XP Internetcommunication of some Programs: Internet Explorer Windows Media Player Windows Messenger Windows Zeitdienst Hilfe- und Supportcenter Windows Update Gerätemanager Windows Aktivierung und Registrierung Aktualisierung der Stammzertifikate Ereignisanzeige Webdienst...

Windows Messenger Could Allow Information Disclosure Vulnerability (955702)

This host is missing a critical security update according to Microsoft Bulletin MS08-050. OpenVAS Vulnerability Test $Id: secpodms08-050900034.nasl 5863 2017-04-05 07:38:11Z antu123 $ Description: Windows Messenger Could Allow Information Disclosure Vulnerability 955702 Authors: Chandan S...

Windows Messenger Could Allow Information Disclosure Vulnerability (955702)

This host is missing a critical security update according to Microsoft Bulletin MS08-050. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Messenger ActiveX控件信息泄露漏洞（MS08-050）

BUGTRAQ ID: 30551 CVECAN ID: CVE-2008-0082 Windows Messenger是Windows操作系统中默认捆绑的即时聊天工具。 在安装Windows XP的时候会自动安装旧版本的MSN Messenger，这个版本打开MSN API运行ActiveX控件Messenger.UIAutomation.1并标记为safe。对这个控件执行脚本操作可能导致以登录用户的环境泄露信息。攻击者可以在登录用户不知情的情况下更改状态、获取联系人信息以及启动音频和视频聊天会话，还可以捕获用户的登录ID并以该用户的身份远程登录用户的Messenger客户端。...

Code injection

An ActiveX control Messenger.UIAutomation.1 in Windows Messenger 4.7 and 5.1 is marked as safe-for-scripting, which allows remote attackers to control the Messenger application, and "change state," obtain contact information, and establish audio or video connections without notification via unkno...

CVE-2008-0082

An ActiveX control Messenger.UIAutomation.1 in Windows Messenger 4.7 and 5.1 is marked as safe-for-scripting, which allows remote attackers to control the Messenger application, and "change state," obtain contact information, and establish audio or video connections without notification via unkno...

CVE-2008-0082

CVE-2008-0082 concerns an ActiveX control (Messenger.UIAutomation.1) in Windows Messenger 4.7 and 5.1 that is marked as safe-for-scripting. This vulnerability allows a remote attacker to hijack the Messenger client, enabling actions such as changing user state, viewing or obtaining contact inform...

CVE-2008-0082

An ActiveX control Messenger.UIAutomation.1 in Windows Messenger 4.7 and 5.1 is marked as safe-for-scripting, which allows remote attackers to control the Messenger application, and "change state," obtain contact information, and establish audio or video connections without notification via unkno...

MS08-050: Vulnerability in Windows Messenger Could Allow Information Disclosure (955702)

The remote host is running Windows Messenger. There is a vulnerability in the remote version of this software that may lead to an information disclosure which could allow an attacker to change the state of a user, to get contact information or to initiate audio and video chat sessions. C Tenable...

Microsoft Windows Messenger ActiveX Control Information Disclosure Vulnerability

Description Microsoft Windows Messenger is prone to an information-disclosure vulnerability. An attacker can exploit this issue by enticing an unsuspecting victim to visit a malicious HTML page. Successfully exploiting this issue allows remote attackers to obtain sensitive information that may ai...