Your best source of information and news about drivers, winvista and windows vista on the internet

Vista ARTICLES TOP 50 Spyware Virus Vista SOFT Vista HELP

MSN Messenger

You are currently browsing the articles from MS Windows Vista Compatible Software matching the category MSN Messenger.

MSN Messenger Buffer Overflow Makes Webcam Sessions Dangerous

Severity: Medium

11 September, 2007

Summary:

Today, Microsoft released a bulletin describing an important security vulnerability affecting MSN Messenger and Windows Live Messenger. By enticing one of your users into accepting a malicious webcam invite, an attacker could exploit this vulnerability to potentially gain complete control of that user’s computer. If you use MSN Messenger or Windows Live Messenger in your network, you should download, test, and deploy the latest version as soon as possible.

Exposure:

Microsoft’s security bulletin describes a vulnerability affecting MSN Messenger 6.2, 7.0, 7.5, and Windows Live Messenger 8.0. The flaw stems from a heap buffer overflow vulnerability in the code used to handle webcam and video chat sessions. We mentioned this vulnerability in an August Wire post, but Microsoft hadn’t patched it at that time. If an attacker can entice one of your users into accepting a specially crafted webcam invite, she can exploit this flaw to execute code on the user’s computer, with that user’s privileges. As always, if your users have local administrative privileges, attackers could exploit this vulnerability to gain complete control of their machines.

Solution Path

Microsoft has released new versions of MSN Messenger and Windows Live Messenger to fix this

Click to continue reading "MSN Messenger Buffer Overflow Makes Webcam Sessions Dangerous"

Written by bardissi on September 12th, 2007 with no comments.
Read more articles on Student Computing and MSN Messenger and Windows 2000 and Microsoft and Non-Profit Technology and Windows XP and Business Computer Support and Home Computer Support and Windows Vista.