CVE-2002-0155

CVE Database · CVE-2002-0155

CVE-2002-0155

· N/AModified

CVSS v3.1

N/A

EPSS

24.10%

Published

May 29, 2002

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exchange Instant Messenger 4.5 and 4.6, allows remote attackers to execute arbitrary code via a long ResDLL parameter in the MSNChat OCX.

Affected Products (5)

microsoft · msn_chat_controlvulnerable

microsoft · msn_messengervulnerable

microsoft · msn_messenger_service_for_exchangevulnerable

References (10)

http://marc.info/?l=bugtraq&m=102089960531919&w=2

http://www.cert.org/advisories/CA-2002-13.html

US Government Resource

http://www.iss.net/security_center/static/9041.php

http://www.securityfocus.com/bid/4707

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-022