CVE-2008-0672 in WinTin++
Summary
The process_chat_input function in TinTin++ 1.97.9 and WinTin++ 1.97.9 allows remote attackers to cause a denial of service (application crash) via a YES message without a newline character, which triggers a NULL dereference.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.