CVE-2006-3250

Heap-based buffer overflow in Windows Live Messenger 8.0 allows user-assisted attackers to execute arbitrary code via a crafted Contact List (.ctt) file, which triggers the overflow when it is imported by the user.

Date published : 2006-06-27

http://www.securityfocus.com/bid/18639

http://www.securityfocus.com/archive/1/438442/100/0/threaded