Unchecked Buffer in MSN Chat Control Can Lead to Code Execution New

An unchecked buffer exists in one of the functions that handles input parameters in the MSN Chat control. The security vulnerability could allow an attacker to run code in the user's context.

Issue

The MSN Chat control is an ActiveX control that allows groups of users to gather in a single, virtual location online to engage in text messaging. The control is offered for download as a single ActiveX control from a number of MSN sites. In addition, it is included with MSN Messenger since version 4.5 and Exchange Instant Messenger. While the MSN Chat control is included with these products it is not used to provide Instant Messaging functionality, but rather to add chat functionality to those products.

An unchecked buffer exists in one of the functions that handles input parameters in the MSN Chat control. A security vulnerability results because it is possible for a malicious user to levy a buffer overrun attack and attempt to exploit this flaw. A successful attack could allow code to run in the user's context.

It would be possible for an attacker to attempt to exploit this vulnerability either through a malicious web site or through HTML email. However, Outlook Express 6.0 and the Outlook Email Security Update, which is available for Outlook 98 and Outlook 2000, Outlook 2002 and can thwart such attempts through their default security settings.

Affected Products

• Microsoft MSN Chat Control
• Microsoft MSN Messenger 4.5 and 4.6
• Microsoft Exchange Instant Messenger 4.5 and 4.6

Download

Patch: http://www.microsoft.com/Downloads/Release.asp?ReleaseID=38790

Further Details

Source: Microsoft Corporation

Reference: Microsoft Corporation

Updated: May 8, 2002

>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<