CVE-2002-0472

Currently unrated

Key Information:

Vendor: Microsoft
Status: Msn Messenger
Vendor: CVE Published:; 12 August 2002

Summary

MSN Messenger Service 3.6, and possibly other versions, uses weak authentication when exchanging messages between clients, which allows remote attackers to spoof messages from other users.

References

http://www.securityfocus.com/archive/1/262906

mailing-listx_refsource_BUGTRAQ

http://www.iss.net/security_center/static/8582.php

vdb-entryx_refsource_XF

http://www.encode-sec.com/esp0202.pdf

x_refsource_MISC

Timeline

Vulnerability published
Aug 12, 2002
Vulnerability Reserved
Jun 7, 2002

Collectors

NVD DatabaseMitre Database