Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
messenger vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2006-3298
Yahoo! Messenger 7.5.0.814 and 7.0.438 allows remote malicious users to cause a denial of service (crash) via messages that contain non-ASCII characters, which triggers the crash in jscript.dll.
Yahoo Messenger 7.0.438
Yahoo Messenger 7.5.0.814
1 EDB exploit
445
VMScore
CVE-2014-8688
An issue exists in Telegram Messenger 2.6 for iOS and 1.8.2 for Android. Secret chat messages are available in cleartext in process memory and a .db file.
Telegram Messenger 2.6
Telegram Messenger 1.8.2
435
VMScore
CVE-2004-1410
Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and previous versions allows remote malicious users to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build154
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build155
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build150
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build151
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build149
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build152
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build153
1 EDB exploit
231
VMScore
CVE-2004-1411
Gadu-Gadu build 155 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters.
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build154
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build155
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build150
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build151
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build149
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build152
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build153
445
VMScore
CVE-2004-2529
Gadu-Gadu allows remote malicious users to bypass the "image send" option by sending a very small image file, which could be used in conjunction with image-related vulnerabilities.
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build153
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build154
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build149
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build150
Gadu-gadu Gadu-gadu Instant Messenger 6.0
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build151
Gadu-gadu Gadu-gadu Instant Messenger 6.0 Build152
445
VMScore
CVE-2004-0122
Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote malicious users to read arbitrary files.
Microsoft Msn Messenger 6.0
Microsoft Msn Messenger 6.1
890
VMScore
CVE-2008-0082
An ActiveX control (Messenger.UIAutomation.1) in Windows Messenger 4.7 and 5.1 is marked as safe-for-scripting, which allows remote malicious users to control the Messenger application, and "change state," obtain contact information, and establish audio or video connect...
Microsoft Windows Messenger 4.7
Microsoft Windows Messenger 5.1
445
VMScore
CVE-2006-4511
Messenger Agents (nmma.exe) in Novell GroupWise 2.0.2 and 1.0.6 allows remote malicious users to cause a denial of service (crash) via a crafted HTTP POST request to TCP port 8300 with a modified val parameter, which triggers a null dereference related to "zero-size strings ...
Novell Groupwise Messenger 1.0.6
Novell Groupwise Messenger 2.0.2
668
VMScore
CVE-2002-0155
Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exchange Instant Messenger 4.5 and 4.6, allows remote malicious users to execute arbitrary code via a long ResDLL parameter in the MSNChat OCX.
Microsoft Msn Messenger Service For Exchange 4.5
Microsoft Msn Messenger Service For Exchange 4.6
Microsoft Msn Chat Control
Microsoft Msn Messenger 4.5
Microsoft Msn Messenger 4.6
668
VMScore
CVE-2021-45887
An issue exists in PONTON X/P Messenger prior to 3.11.2. Due to path traversal in private/SchemaSetUpload.do for uploaded ZIP files, an executable script can be uploaded by web application administrators, giving the attacker remote code execution on the underlying server via an i...
Ponton X\\/p Messenger 3.8.0
Ponton X\\/p Messenger 3.10.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »