Microsoft MSN Messenger Service 1.0 up to and including 4.6 allows remote malicious users to cause a denial of service (crash) via an invite request that contains hex-encoded spaces (%20) in the Invitation-Cookie field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft msn messenger 2.0 |
||
microsoft msn messenger 3.0 |
||
microsoft msn messenger 3.6 |
||
microsoft msn messenger 4.0 |
||
microsoft msn messenger 4.5 |
||
microsoft msn messenger 4.6 |
||
microsoft msn messenger 1.0 |
||
microsoft msn messenger 2.2 |