VYPR
Unrated severityNVD Advisory· Published Dec 4, 2006· Updated Jun 16, 2026

CVE-2006-6252

CVE-2006-6252

Description

Microsoft Windows Live Messenger 8.0 and earlier, when gestual emoticons are enabled, allows remote attackers to cause a denial of service (CPU consumption) via a long string composed of ":D" sequences, which are interpreted as emoticons.

Affected products

2
  • cpe:2.3:a:microsoft:windows_live_messenger:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:microsoft:windows_live_messenger:*:*:*:*:*:*:*:*range: <=8.0
    • (no CPE)range: <=8.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.