Microsoft MSN Messenger/Windows Messenger PNG Buffer Overflow Vulnerability

Bugtraq ID: 12506
Class: Boundary Condition Error
CVE: CVE-2004-0597
Remote: Yes
Local: No
Published: Feb 08 2005 12:00AM
Updated: Jul 12 2009 10:06AM
Credit: Juliano Rizzo of Core Security Technologies identified these issues in MSN and Windows Messenger.
Vulnerable: Nortel Networks Symposium Call Center Server (SCCS)
Nortel Networks Optivity Telephony Manager (OTM)
Nortel Networks Mobile Voice Client 2050
Nortel Networks IP softphone 2050
Microsoft Windows XP Tablet PC Edition SP1
Microsoft Windows XP Professional SP1
Microsoft Windows XP Media Center Edition SP1
Microsoft Windows XP Home SP1
Microsoft Windows XP 64-bit Edition Version 2003
Microsoft Windows Messenger 4.7 .3000
+ Microsoft Windows XP Home SP2
+ Microsoft Windows XP Home SP2
+ Microsoft Windows XP Media Center Edition SP2
+ Microsoft Windows XP Media Center Edition SP2
+ Microsoft Windows XP Professional SP2
+ Microsoft Windows XP Professional SP2
+ Microsoft Windows XP Tablet PC Edition SP2
+ Microsoft Windows XP Tablet PC Edition SP2
Microsoft Windows Messenger 4.7 .2009
+ Microsoft Windows XP Home SP1
+ Microsoft Windows XP Home SP1
+ Microsoft Windows XP Media Center Edition SP1
+ Microsoft Windows XP Media Center Edition SP1
+ Microsoft Windows XP Professional SP1
+ Microsoft Windows XP Professional SP1
+ Microsoft Windows XP Tablet PC Edition SP1
+ Microsoft Windows XP Tablet PC Edition SP1
Microsoft Windows Messenger 5.0
Microsoft MSN Messenger Service 6.2
Microsoft MSN Messenger Service 6.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus