[NT] Buffer Overflow in MSN Messenger
From: SecuriTeam (support_at_securiteam.com)
Date: 07/20/03
- Previous message: SecuriTeam: "[EXPL] EST BRU Backup and Restore Utility Local Root Exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: list@securiteam.com Date: 20 Jul 2003 19:44:15 +0200
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
Beyond Security in Canada
Toronto-based Sunrays Technologies is now Beyond Security's representative in Canada.
We welcome ISPs, system integrators and IT systems resellers
to promote the most advanced vulnerability assessment solutions today.
Contact us at 416-482-0038 or at canadasales@beyondsecurity.com
- - - - - - - - -
Buffer Overflow in MSN Messenger
------------------------------------------------------------------------
SUMMARY
MSN Messenger is "one of the most famous messengers, due to the
interesting services that it offers". Version 6.0 comes with many new
services and features, one of these is a small viewer box that displays a
preview picture of the file being received before it actually starts
receiving/sending it (Whenever the file being received is a picture). This
preview has been found to contain a vulnerability whenever an incomplete
picture is being received/sent.
DETAILS
Vulnerable systems:
* MSN Messenger version 6.0 build 6.0.0501
Immune systems:
* MSN Messenger version 6.0 build 6.0.0602
An example incomplete picture can be downloaded from:
<http://members.lycos.co.uk/bnsecurity/01/>
http://members.lycos.co.uk/bnsecurity/01/
Vendor response:
"We suspect that we have already fixed this bug as early as build 501 as
your report is very similar to a bug that was resolved with that build,
however, we would like your assistance to verify this."
ADDITIONAL INFORMATION
The information has been provided by <mailto:b_naamneh@hotmail.com> Bahaa
Naamneh.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: SecuriTeam: "[EXPL] EST BRU Backup and Restore Utility Local Root Exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
- Buffer overflow in MSN Messenger 6.0
... MSN Messenger 6.0 biuld 6.0.0501 and prior ... is picture this box show
the picture itself not the icon before getting it. ... Sending "uncompleted pictures" cause
a buffer overflow. ... Sometimes while we receiving picture from any person the connection
failed ... (Bugtraq) - Re: Explorer bug
... > which version of MSN Messenger are you using? ... > ssg MS-MVP
... > Herman Toothrot wrote: ... >> picture or use my own emoticons,
... (microsoft.public.windowsxp.general) - Re: Explorer bug
... Herman Toothrot wrote: ... > to my last norton ghost image. ...
Whenever I use MSN Messenger and try to change my ... > picture or use my own
emoticons, ... (microsoft.public.windowsxp.general) - Re: Explorer bug
... > which version of MSN Messenger are you using? ... I scanned my computer
with AVG and ... >> picture or use my own emoticons, ... (microsoft.public.windowsxp.general)
