Microsoft Windows RTCP Unspecified Remote DoS Vulnerability Network Vulnerability

Summary

This host is installed with Microsoft Live Messenger and is prone to remote Denial of Service vulnerability.

Impact

Successful exploitation will crash the application. Impact Level: Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. For updates refer to http://windows.microsoft.com/en-us/windows-live/essentials

Insight

The vulnerability is due to error in the 'RTCP' or 'Real-time Transport Control Protocol' receiver report packet handling.

Affected

Microsoft Windows Live Messenger version 8.5.1302.1018 and prior.

Severity

Classification

CVE CVE-2008-5179
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

F-PROT AV 'ELF' Header Denial of Service Vulnerability
Apache Connection Blocking Denial of Service
Adobe Flash Media Server XML Data Remote Denial of Service Vulnerability
Dell OpenManage Web Server <= 3.7.1
Adobe Flash Media Server Remote Denial of Service Vulnerability (August-2011)

Take action and discover your vulnerabilities