Monthly Archive for August, 2007

MSN Messenger vulnerable to ‘highly critical’ webcam flaw

Published
by
Adrian Doherty
10 months, 1 week ago
in Miscellaneous
. Comments

From ZDNet, Exploit code for a “highly critical” vulnerability in MSN Messenger has been posted to a Chinese-language forum, prompting Microsoft to urge all users to immediately migrate to Windows Live Messenger 8.1. The exploit, available here, is caused by an error in the handling of video conversations and can be exploited to cause a heap-based buffer overflow via specially crafted data sent to a user.

Secunia warns that successful exploitation may allow execution of arbitrary code, but requires that the victim accepts the incoming Webcam invitation. “This is under investigation,” a Microsoft spokesman said. “Our investigation so far shows that the latest version, Windows Live Messenger 8.1, is not vulnerable to this issue,” he added, urging Windows Live Messenger 8.0 users to upgrade to Messenger 8.1. “We have encouraged customers to upgrade to Windows Live Messenger 8.1 beginning February 2007,” the spokesman said.

Forum Reshuffle

Published
by
Adrian Doherty
11 months ago
in Site Updates
. Comments
Site Updates

As you may have noticed Daniel is on a holiday for a few months so in his place we’ve done some slight reshuffles relating to the forums. Merged the MSN and Windows Live Messenger into one, split Non-Messenger code from the Messenger related code, removed IMTiger due to inactivity and turned the Triople forum to read-only as theres no point allowing postings in there as we know the limits and restrictions of the service. Theres a prospect of a forum skin finally being up so keep your fingers crossed. Of course we hope to post a little more then we have of late so come to the forums, post and have a bit of fun!