vendor:
aMSN
by:
Hakxer
7.5
CVSS
HIGH
Denial of Service
20
CWE
Product Name: aMSN
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
aMSN CTT File Denial of Service Vulnerability
aMSN is prone to a remote denial-of-service vulnerability because the application fails to perform adequate boundary checks on user-supplied input. Attackers can exploit this issue by enticing an unsuspecting victim to open a specially crafted '.ctt' file. Successfully exploiting this issue will cause the application to crash, denying service to legitimate users. Attackers may also be able to run arbitrary code, but this has not been confirmed.
Mitigation:
Users should avoid opening untrusted '.ctt' files.