CVE-2005-2225

CVE Database · CVE-2005-2225

CVE-2005-2225

· N/AModified

CVSS v3.1

N/A

EPSS

16.44%

Published

Jul 12, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft MSN Messenger allows remote attackers to cause a denial of service via a plaintext message containing the ".pif" string, which is interpreted as a malicious file extension and causes users to be kicked from a group conversation. NOTE: it has been reported that Gaim is also affected, so this may be an issue in the protocol or MSN servers.

Affected Products (1)

microsoft · msn_messenger_servicevulnerable

References (6)

http://securitytracker.com/id?1014444

ExploitVendor Advisory

http://www.digitalparadox.org/viewadvisories.ah?view=45

ExploitVendor Advisory

http://www.messenger-blog.com/?p=146

ExploitVendor AdvisoryURL Repurposed

http://securitytracker.com/id?1014444

ExploitVendor Advisory

http://www.digitalparadox.org/viewadvisories.ah?view=45

ExploitVendor Advisory

http://www.messenger-blog.com/?p=146

KEV Catalog EPSS Scores Vendors All CVEs