MessengerScan Microsoft MessengerScan Vulnerability Detection Utility
Download

MessengerScan Ranking & Summary

MessengerScan Tags

detect detection vulnerability Detect Vulnerability Vulnerability Detection Messenger Vulnerability

MessengerScan Description

The MessengerScan application was designed to be a Windows based detection and analysis utility that can quickly and accurately identify Microsoft operating systems that are vulnerable to the messenger service buffer overflow released in the MS03-043 bulletin. MessengerScan is intended for use by enterprise system and network administrators as a fast and reliable utility for identifying at risk Microsoft systems in a passive manner. The vulnerability detection part of the tool is non-abrasive in nature and may be run in production environments during production hours. In addition to identifying vulnerable systems, MessengerScan provides administrators the ability to shutdown AND disable the messenger service running on the vulnerable system. Vulnerability Information: The Microsoft Windows Messenger Service transmits messages to network users and the Alerter Service for Windows. It is not related to the Windows or MSN Messenger instant messaging applications. The Messenger Service fails to validate the size of messages allowing an allocated buffer to be overflowed. Data outside the buffer will be placed in memory and processed with SYSTEM level privileges or cause the service to stop responding. Remote attackers can send specially crafted messages allowing them to execute arbitrary code on targeted hosts.

MessengerScan Related Software