Indiatimes.Messenger.Group.Name.Buffer.Overflow

description-logoDescription

Indiatimes Messenger has a buffer overflow vulnerability. A remote attacker could cause the application to crash or execute arbitrary code on the victim system, by crafting a malformed web page with a long group name argument to the RenameGroup function in the MMClient.MunduMessenger.1 ActiveX object.

affected-products-logoAffected Products

Indiatimes Messenger 6.0

Impact logoImpact

Gain Access.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)