CVE-2002-1831

2005-06-2804:00:00

mitre

www.cve.org

microsoft

msn messenger service

denial of service

invite request

hex-encoded spaces

AI Score

6.6

Confidence

High

EPSS

0.076

Percentile

94.3%

JSON

Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via an invite request that contains hex-encoded spaces (%20) in the Invitation-Cookie field.

References

online.securityfocus.com/archive/1/274086

www.iss.net/security_center/static/9161.php

www.securityfocus.com/bid/4827