MSN Messenger 6.0 Buffer Overflow Vulnerability

dwergs from Mess with MSN Messenger points out another reason why you should upgrade to the latest 0602 build of MSN Messenger 6. A certain Bahaa Naamneh reported a bug in MSN Messenger 6.0.0501 and prior builds that makes it possible to crash someone"s MSN by sending bad, incomplete pictures.

If you send an image file to one of your contacts, MSN shows a thumbnail even before the destination accepts the transfer. Now when u send an incomplete file image the thumbnailer will lose the default size, cause a buffer overflow and crash the client.

Microsoft"s response: "We suspect that we have already fixed this bug as early as build 501..." Our advice: upgrade to the latest build of 6.0 to protect yourself from exploits.

News source: Help Net Security

Report a problem with article
Next Article

No Man's Land demo

Previous Article

Argentum Coolbase 2.30 RC