Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windows messenger vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0278
A certain ActiveX control in msgsc.14.0.8089.726.dll in Microsoft Windows Live Messenger 2009 build 14.0.8089.726 on Windows Vista and Windows 7 allows remote malicious users to cause a denial of service (msnmsgr.exe crash) by calling the ViewProfile method with a crafted argumen...
Microsoft Windows Live Messenger 2009
1 EDB exploit
NA
CVE-2009-2544
Directory traversal vulnerability in the Marcelo Costa FileServer component 1.0 for Microsoft Windows Live Messenger and Messenger Plus! Live (MPL) allows remote authenticated users to list arbitrary directories and read arbitrary files via a .. (dot dot) in a pathname.
Marcelo Costa Fileserver 1.0
1 EDB exploit
NA
CVE-2009-0647
msnmsgr.exe in Windows Live Messenger (WLM) 2009 build 14.0.8064.206, and other 14.0.8064.x builds, allows remote malicious users to cause a denial of service (application crash) via a modified header in a packet, as possibly demonstrated by a UTF-8.0 value of the charset field i...
Microsoft Windows Live Messenger 2009
NA
CVE-2008-5828
Microsoft Windows Live Messenger Client 8.5.1 and previous versions, when MSN Protocol Version 15 (MSNP15) is used over a NAT session, allows remote malicious users to discover intranet IP addresses and port numbers by reading the (1) IPv4InternalAddrsAndPorts, (2) IPv4Internal-A...
Microsoft Windows Live Messenger 8.1
Microsoft Windows Live Messenger
Microsoft Windows Live Messenger 8.0
Microsoft Windows Live Messenger 8.5
NA
CVE-2008-5179
Unspecified vulnerability in Microsoft Office Communications Server (OCS), Office Communicator, and Windows Live Messenger allows remote malicious users to cause a denial of service (crash) via a crafted Real-time Transport Control Protocol (RTCP) receiver report packet.
Microsoft Office Communicator
Microsoft Office Communications Server
Microsoft Windows Live Messenger
NA
CVE-2008-0082
An ActiveX control (Messenger.UIAutomation.1) in Windows Messenger 4.7 and 5.1 is marked as safe-for-scripting, which allows remote malicious users to control the Messenger application, and "change state," obtain contact information, and establish audio or video connect...
Microsoft Windows Messenger 4.7
Microsoft Windows Messenger 5.1
NA
CVE-2008-2703
Multiple stack-based buffer overflows in Novell GroupWise Messenger (GWIM) Client prior to 2.0.3 HP1 for Windows allow remote malicious users to execute arbitrary code via "spoofed server responses" that contain a long string after the NM_A_SZ_TRANSACTION_ID field name.
Novell Groupwise Messenger 2.0
Novell Groupwise Messenger 2.0.2
Novell Groupwise Messenger 2.0.3
2 EDB exploits
NA
CVE-2008-0956
Multiple stack-based buffer overflows in the BackWeb Lite Install Runner ActiveX control in the BackWeb Web Package ActiveX object in LiteInstActivator.dll in BackWeb prior to 8.1.1.87, as used in Logitech Desktop Manager (LDM) prior to 2.56, allow remote malicious users to execu...
Logitech Desktop Manager
Backweb Backweb
NA
CVE-2007-5144
Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote malicious users to cause a denial of service (application crash or system crash) and possibly execute arbitrary code by placing a malformed file in a new fol...
Microsoft Windows Live Messenger 8.1
NA
CVE-2007-2931
Heap-based buffer overflow in Microsoft MSN Messenger 6.2, 7.0, and 7.5, and Live Messenger 8.0 allows user-assisted remote malicious users to execute arbitrary code via unspecified vectors involving video conversation handling in Web Cam and video chat sessions.
Microsoft Msn Messenger 6.2
Microsoft Windows Live Messenger 8.0
Microsoft Msn Messenger 7.0
Microsoft Msn Messenger 7.5
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »