Microsoft Windows Live Messenger — known CVE vulnerabilities
Every CVE whose affected-product data names Microsoft Windows Live Messenger, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2007-2931 — CVSS 9.3 (critical): Heap-based buffer overflow in Microsoft MSN Messenger 6.2, 7.0, and 7.5, and Live Messenger 8.0 allows user-assisted remote attackers to…
CVE-2006-3250 — CVSS 5.1 (medium): Heap-based buffer overflow in Windows Live Messenger 8.0 allows user-assisted attackers to execute arbitrary code via a crafted Contact…
CVE-2008-5179 — CVSS 5.0 (medium): Unspecified vulnerability in Microsoft Office Communications Server (OCS), Office Communicator, and Windows Live Messenger allows remote…
CVE-2008-5828 — CVSS 5.0 (medium): Microsoft Windows Live Messenger Client 8.5.1 and earlier, when MSN Protocol Version 15 (MSNP15) is used over a NAT session, allows remote…
CVE-2009-0647 — CVSS 5.0 (medium): msnmsgr.exe in Windows Live Messenger (WLM) 2009 build 14.0.8064.206, and other 14.0.8064.x builds, allows remote attackers to cause a…
CVE-2010-0278 — CVSS 4.3 (medium): A certain ActiveX control in msgsc.14.0.8089.726.dll in Microsoft Windows Live Messenger 2009 build 14.0.8089.726 on Windows Vista and…
CVE-2007-5144 — CVSS 4.3 (medium): Buffer overflow in the GDI engine in Windows Live Messenger, as used for Windows MSN Live 8.1, allows user-assisted remote attackers to…
CVE-2006-6252 — CVSS 4.3 (medium): Microsoft Windows Live Messenger 8.0 and earlier, when gestual emoticons are enabled, allows remote attackers to cause a denial of service…