Vulnerabilities > CVE-2002-1831 - Unspecified vulnerability in Microsoft MSN Messenger

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

exploit available

NVD

Published: 2002-12-31

Updated: 2008-09-05

Summary

Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via an invite request that contains hex-encoded spaces (%20) in the Invitation-Cookie field.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft MSN Messenger 1.0 Microsoft MSN Messenger 2.0 Microsoft MSN Messenger 2.2 Microsoft MSN Messenger 3.0 Microsoft MSN Messenger 3.6 Microsoft MSN Messenger 4.0 Microsoft MSN Messenger 4.5 Microsoft MSN Messenger 4.6	8

Exploit-Db

description	Microsoft MSN Messenger 1-4 Malformed Invite Request Denial of Service. CVE-2002-1831 . Dos exploit for windows platform
id	EDB-ID:21481
last seen	2016-02-02
modified	2002-05-24
published	2002-05-24
reporter	Beck Mr.R
source	https://www.exploit-db.com/download/21481/
title	Microsoft MSN Messenger 1-4 Malformed Invite Request Denial of Service

Summary

Vulnerable Configurations

Exploit-Db

References