Denial of Service Vulnerability in Microsoft MSN Messenger and Gaim

Denial of Service Vulnerability in Microsoft MSN Messenger and Gaim

CVE-2005-2225 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so this may be an issue in the protocol or MSN servers.

Learn more about our Cis Benchmark Audit For Server Software.