| VID |
26131 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (896597) for 'Remote Code Execution Vulnerability in MSN Messenger' has not been applied. Microsoft MSN (Microsoft Network) Messenger is an instant messaging client program for Windows platforms that Internet users can use to chat and exchange files. MSN Messenger 6.2 and MSN Messenger 7.0 beta are vulnerable to a remote buffer overflow vulnerability when handling malformed Graphic Interchange Format (GIF) images. This may allow an attacker to gain unauthorized access to an affected computer by executing arbitrary code, reportedly resulting in system level compromise. Specially crafted emoticons or display pictures are likely to be used in a client-to-client attack.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms05-022.mspx
* Platforms Affected:
Microsoft MSN Messenger 6.2
Microsoft MSN Messenger Service 7.0 beta
Microsoft Windows Any version |
| Recommendation |
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS05-022 at http://www.microsoft.com/technet/security/bulletin/ms05-022.mspx |
| Related URL |
CVE-2005-0562 (CVE) |
| Related URL |
13114 (SecurityFocus) |
| Related URL |
19950 (ISS) |
|
