Overview
MSN Messenger clients before version 7.0 will allow remote attackers to take control of a computer if malicious GIF files are processed.
Description
Microsoft MSN Messenger is an instant messaging application that allows users to collaborate with people using text messages, voice and video communication, or by sending files. There is a buffer overflow vulnerability in a function MSN Messenger uses to process Graphic Interchange Format (GIF) image files. By sending a specially crafted GIF image file with unexpected height and width parameters, a remote attacker in a victim's contacts list could take control of a computer with the privileges of the affected user. Examples of GIF image files MSN Messenger typically processes include emoticons and display pictures. Please note the updates from Microsoft in MS05-022 addressing this issue supercede those in MS05-009. MSN Messenger 7.0 BETA is affected by this issue. |
Impact
Remote attackers may execute arbitrary code with the privileges of affected users. Microsoft notes MSN Messenger does not by default anonymous user messages. An attecker must be in a victim's contacts list. |
Solution
Upgrade to either MSN Messenger 6.2.208 or MSN Messenger 7.0. Note MSN Messenger 7.0 BETA is affected by this issue. |
WorkaroundsMicrosoft has included the following potential workarounds in their technical security bulletin, MS05-022, about this issue:
|
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Microsoft has thanked Hongzhen Zhou in technical security bulletin MS05-022.
This document was written by Jeffrey S. Havrilla.
Other Information
| CVE IDs: | CVE-2005-0562 |
| Severity Metric: | 23.63 |
| Date Public: | 2005-04-12 |
| Date First Published: | 2005-04-12 |
| Date Last Updated: | 2005-04-12 22:33 UTC |
| Document Revision: | 13 |