Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Microsoft MSN Messenger and Windows Live Messenger Remote Code Execution Vulnerability (942099) (deprecated)

High

Synopsis

Arbitrary code can be executed on the remote host through MSN or Windows Live Messenger.

Description

The remote host is running MSN Messenger or Windows Live Messenger. The version of Messenger used on the remote host is vulnerable to a remote buffer overflow in the way it handles webcam and video chat sessions. An attacker may exploit this vulnerability to execute arbitrary code on the remote host.

Solution

Upgrade or patch according to vendor recommendations.