Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
messenger vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-3298
Yahoo! Messenger 7.5.0.814 and 7.0.438 allows remote malicious users to cause a denial of service (crash) via messages that contain non-ASCII characters, which triggers the crash in jscript.dll.
Yahoo Messenger 7.0.438
Yahoo Messenger 7.5.0.814
1 EDB exploit
5
CVSSv2
CVE-2014-8688
An issue exists in Telegram Messenger 2.6 for iOS and 1.8.2 for Android. Secret chat messages are available in cleartext in process memory and a .db file.
Telegram Messenger 2.6
Telegram Messenger 1.8.2
4.3
CVSSv2
CVE-2004-1410
Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and previous versions allows remote malicious users to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build154
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build155
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build150
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build151
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build149
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build152
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build153
1 EDB exploit
2.6
CVSSv2
CVE-2004-1411
Gadu-Gadu build 155 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters.
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build154
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build155
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build150
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build151
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build149
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build152
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build153
5
CVSSv2
CVE-2004-2529
Gadu-Gadu allows remote malicious users to bypass the "image send" option by sending a very small image file, which could be used in conjunction with image-related vulnerabilities.
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build153
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build154
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build149
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build150
Gadu-gadu Gadu-gadu Instant Messenger 6.0
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build151
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build152
5
CVSSv2
CVE-2004-0122
Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote malicious users to read arbitrary files.
Microsoft Msn Messenger 6.0
Microsoft Msn Messenger 6.1
10
CVSSv2
CVE-2008-0082
An ActiveX control (Messenger.UIAutomation.1) in Windows Messenger 4.7 and 5.1 is marked as safe-for-scripting, which allows remote malicious users to control the Messenger application, and "change state," obtain contact information, and establish audio or video connect...
Microsoft Windows Messenger 4.7
Microsoft Windows Messenger 5.1
5
CVSSv2
CVE-2006-4511
Messenger Agents (nmma.exe) in Novell GroupWise 2.0.2 and 1.0.6 allows remote malicious users to cause a denial of service (crash) via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings ...
Novell Groupwise Messenger 1.0.6
Novell Groupwise Messenger 2.0.2
7.5
CVSSv2
CVE-2002-0155
Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exchange Instant Messenger 4.5 and 4.6, allows remote malicious users to execute arbitrary code via a long ResDLL parameter in the MSNChat OCX.
Microsoft Msn Messenger Service For Exchange 4.5
Microsoft Msn Messenger Service For Exchange 4.6
Microsoft Msn Chat Control
Microsoft Msn Messenger 4.5
Microsoft Msn Messenger 4.6
7.5
CVSSv2
CVE-2021-45887
An issue exists in PONTON X/P Messenger prior to 3.11.2. Due to path traversal in private/SchemaSetUpload.do for uploaded ZIP files, an executable script can be uploaded by web application administrators, giving the attacker remote code execution on the underlying server via an i...
Ponton X\\/p Messenger 3.8.0
Ponton X\\/p Messenger 3.10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »