Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft windows live messenger vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5828
Microsoft Windows Live Messenger Client 8.5.1 and previous versions, when MSN Protocol Version 15 (MSNP15) is used over a NAT session, allows remote malicious users to discover intranet IP addresses and port numbers by reading the (1) IPv4InternalAddrsAndPorts, (2) IPv4Internal-A...
Microsoft Windows Live Messenger 8.1
Microsoft Windows Live Messenger
Microsoft Windows Live Messenger 8.0
Microsoft Windows Live Messenger 8.5
NA
CVE-2006-6252
Microsoft Windows Live Messenger 8.0 and previous versions, when gestual emoticons are enabled, allows remote malicious users to cause a denial of service (CPU consumption) via a long string composed of ":D" sequences, which are interpreted as emoticons.
Microsoft Windows Live Messenger
NA
CVE-2006-3250
Heap-based buffer overflow in Windows Live Messenger 8.0 allows user-assisted malicious users to execute arbitrary code via a crafted Contact List (.ctt) file, which triggers the overflow when it is imported by the user.
Microsoft Windows Live Messenger 8.0
NA
CVE-2007-5144
Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote malicious users to cause a denial of service (application crash or system crash) and possibly execute arbitrary code by placing a malformed file in a new fol...
Microsoft Windows Live Messenger 8.1
NA
CVE-2009-0647
msnmsgr.exe in Windows Live Messenger (WLM) 2009 build 14.0.8064.206, and other 14.0.8064.x builds, allows remote malicious users to cause a denial of service (application crash) via a modified header in a packet, as possibly demonstrated by a UTF-8.0 value of the charset field i...
Microsoft Windows Live Messenger 2009
NA
CVE-2007-2931
Heap-based buffer overflow in Microsoft MSN Messenger 6.2, 7.0, and 7.5, and Live Messenger 8.0 allows user-assisted remote malicious users to execute arbitrary code via unspecified vectors involving video conversation handling in Web Cam and video chat sessions.
Microsoft Msn Messenger 6.2
Microsoft Windows Live Messenger 8.0
Microsoft Msn Messenger 7.0
Microsoft Msn Messenger 7.5
2 EDB exploits
NA
CVE-2008-5179
Unspecified vulnerability in Microsoft Office Communications Server (OCS), Office Communicator, and Windows Live Messenger allows remote malicious users to cause a denial of service (crash) via a crafted Real-time Transport Control Protocol (RTCP) receiver report packet.
Microsoft Office Communicator
Microsoft Office Communications Server
Microsoft Windows Live Messenger
NA
CVE-2010-0278
A certain ActiveX control in msgsc.14.0.8089.726.dll in Microsoft Windows Live Messenger 2009 build 14.0.8089.726 on Windows Vista and Windows 7 allows remote malicious users to cause a denial of service (msnmsgr.exe crash) by calling the ViewProfile method with a crafted argumen...
Microsoft Windows Live Messenger 2009
1 EDB exploit
NA
CVE-2009-2544
Directory traversal vulnerability in the Marcelo Costa FileServer component 1.0 for Microsoft Windows Live Messenger and Messenger Plus! Live (MPL) allows remote authenticated users to list arbitrary directories and read arbitrary files via a .. (dot dot) in a pathname.
Marcelo Costa Fileserver 1.0
1 EDB exploit
7.5
CVSSv3
CVE-2015-3193
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 prior to 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote malicious users to obt...
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
Nodejs Node.js
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »