CVE-2008-5828

Microsoft Windows Live Messenger Client 8.5.1 and earlier, when MSN Protocol Version 15 (MSNP15) is used over a NAT session, allows remote attackers to discover intranet IP addresses and port numbers by reading the (1) IPv4InternalAddrsAndPorts, (2) IPv4Internal-Addrs, and (3) IPv4Internal-Port header fields.
Configurations

Configuration 1

cpe:2.3:a:microsoft:windows_live_messenger:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_live_messenger:8.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_live_messenger:8.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:windows_live_messenger:8.5:*:*:*:*:*:*:*

Information

Published : 2009-01-02 07:30

Updated : 2018-10-11 08:56


NVD link : CVE-2008-5828

Mitre link : CVE-2008-5828

Products Affected
No products.
CWE