cve-2005-1262-00

Summary MSN Remote DoS
Date 2005-05-10
CVE Number CVE-2005-1262
Discovered By Siebe Tolsma
Fixed In Release 1.3.0

Description

Potential remote denial of service bug resulting from not checking a pointer for non-NULL before passing it to strncmp, which results in a crash. This can be triggered by a remote client sending an SLP message with an empty body.

Mitigation

Check for NULL before attempting to use the pointer.

Looking to reach us via XMPP? Check out the new PidginChat service!