CVE-2005-2225 in MSN Messengerinfo

Summary

Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so this may be an issue in the protocol or MSN servers.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

07/12/2005

Disclosure

07/12/2005

Moderation

VulDB entry created

Entries

1: VDB-25752

CPE

ready

CWE

CWE-312 (Confirmed)

CVSS

5.3

EPSS

0.11115

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-2225
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-2225
CVE Details	https://www.cvedetails.com/cve/CVE-2005-2225/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!