Описание
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so this may be an issue in the protocol or MSN servers.
Ссылки
- ExploitVendor Advisory
- ExploitVendor Advisory
- ExploitVendor AdvisoryURL Repurposed
- ExploitVendor Advisory
- ExploitVendor Advisory
- ExploitVendor AdvisoryURL Repurposed
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:microsoft:msn_messenger_service:*:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.11115
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so this may be an issue in the protocol or MSN servers.
EPSS
Процентиль: 93%
0.11115
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other