Unrated severityNVD Advisory· Published Jan 2, 2009· Updated Jun 16, 2026
CVE-2008-5828
CVE-2008-5828
Description
Microsoft Windows Live Messenger Client 8.5.1 and earlier, when MSN Protocol Version 15 (MSNP15) is used over a NAT session, allows remote attackers to discover intranet IP addresses and port numbers by reading the (1) IPv4InternalAddrsAndPorts, (2) IPv4Internal-Addrs, and (3) IPv4Internal-Port header fields.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:microsoft:windows_live_messenger:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:microsoft:windows_live_messenger:*:*:*:*:*:*:*:*range: <=8.5.1
- cpe:2.3:a:microsoft:windows_live_messenger:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:windows_live_messenger:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:windows_live_messenger:8.5:*:*:*:*:*:*:*
- (no CPE)range: <=8.5.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.