Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
msn messenger vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2010-0744
aMSN (aka Alvaro's Messenger) 0.98.3 and previous versions, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-mid...
Alvaro Alvaros Messenger 0.95
Alvaro Alvaros Messenger 0.94
Alvaro Alvaros Messenger
Alvaro Alvaros Messenger 0.91
Alvaro Alvaros Messenger 0.90
Alvaro Alvaros Messenger 0.97
Alvaro Alvaros Messenger 0.96
Alvaro Alvaros Messenger 0.83
Alvaro Alvaros Messenger 0.93
Alvaro Alvaros Messenger 0.92
5
CVSSv2
CVE-2008-5828
Microsoft Windows Live Messenger Client 8.5.1 and previous versions, when MSN Protocol Version 15 (MSNP15) is used over a NAT session, allows remote malicious users to discover intranet IP addresses and port numbers by reading the (1) IPv4InternalAddrsAndPorts, (2) IPv4Internal-A...
Microsoft Windows Live Messenger 8.1
Microsoft Windows Live Messenger
Microsoft Windows Live Messenger 8.0
Microsoft Windows Live Messenger 8.5
5
CVSSv2
CVE-2007-3436
Microsoft MSN Messenger 4.7 on Windows XP allows remote malicious users to cause a denial of service (resource consumption) via a flood of SIP INVITE requests to the port specified for voice conversation.
Microsoft Msn Messenger 4.7
5
CVSSv2
CVE-2005-2304
Microsoft MSN Messenger 9.0 and Internet Explorer 6.0 allows remote malicious users to cause a denial of service (crash) via an image with an ICC Profile with a large Tag Count.
Microsoft Internet Explorer 6.0
Microsoft Live Messenger 9.0
5
CVSSv2
CVE-2005-2225
Microsoft MSN Messenger allows remote malicious users to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reporte...
Microsoft Msn Messenger Service
5
CVSSv2
CVE-2005-0208
The HTML parsing functions in Gaim prior to 1.1.4 allow remote malicious users to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0473.
Rob Flynn Gaim 1.1.2
Rob Flynn Gaim 1.1.3
Rob Flynn Gaim 1.1.0
Rob Flynn Gaim 1.1.1
5
CVSSv2
CVE-2005-0472
Gaim prior to 1.1.3 allows remote malicious users to cause a denial of service (infinite loop) via malformed SNAC packets from (1) AIM or (2) ICQ.
Rob Flynn Gaim 1.1.1
Rob Flynn Gaim 1.1.2
Rob Flynn Gaim 1.0
Rob Flynn Gaim 1.0.1
Mandrakesoft Mandrake Linux 10.1
Redhat Enterprise Linux 4.0
Mandrakesoft Mandrake Linux Corporate Server 3.0
Mandrakesoft Mandrake Linux 10.0
Redhat Enterprise Linux Desktop 4.0
5
CVSSv2
CVE-2005-0473
The HTML parsing functions in Gaim prior to 1.1.3 allow remote malicious users to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0208.
Rob Flynn Gaim 1.0
Rob Flynn Gaim 1.1.2
Rob Flynn Gaim 1.0.1
Rob Flynn Gaim 1.1.1
Mandrakesoft Mandrake Linux 10.1
Redhat Enterprise Linux 4.0
Mandrakesoft Mandrake Linux Corporate Server 3.0
Mandrakesoft Mandrake Linux 10.0
Redhat Enterprise Linux Desktop 4.0
5
CVSSv2
CVE-2004-0122
Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote malicious users to read arbitrary files.
Microsoft Msn Messenger 6.0
Microsoft Msn Messenger 6.1
5
CVSSv2
CVE-2003-0116
Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check the Cascading Style Sheet input parameter for Modal dialogs, which allows remote malicious users to read files on the local system via a web page containing script that creates a dialog and then accesses the ta...
Microsoft Internet Explorer 5.0.1
Microsoft Ie 6.0
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »