Denial of Service Vulnerability in Microsoft MSN Messenger Service
CVE-2002-1831

Currently unrated

Key Information:

Vendor: Microsoft
Status: Msn Messenger
Vendor: CVE Published:; 31 December 2002

Summary

The Microsoft MSN Messenger Service versions 1.0 through 4.6 are susceptible to a denial of service attack. An attacker can exploit this vulnerability by sending an invitation request that includes hex-encoded spaces (%20) in the Invitation-Cookie field, which results in a crash of the service. This could lead to service interruptions for users of affected versions, making it crucial for organizations to implement security measures to mitigate potential attacks.

References

http://www.iss.net/security_center/static/9161.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/4827

vdb-entryx_refsource_BID

http://online.securityfocus.com/archive/1/274086

mailing-listx_refsource_BUGTRAQ

EPSS Score

16% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002