CVE-2006-6252

CVE Database · CVE-2006-6252

CVE-2006-6252

· N/AModified

CVSS v3.1

N/A

EPSS

10.57%

Published

Dec 4, 2006

Modified

Apr 22, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Windows Live Messenger 8.0 and earlier, when gestual emoticons are enabled, allows remote attackers to cause a denial of service (CPU consumption) via a long string composed of ":D" sequences, which are interpreted as emoticons.

Affected Products (1)

microsoft · windows_live_messengervulnerable

References (4)

http://www.securityfocus.com/archive/1/452620/100/0/threaded

http://www.securityfocus.com/archive/1/452645/100/0/threaded

http://www.securityfocus.com/archive/1/452620/100/0/threaded

http://www.securityfocus.com/archive/1/452645/100/0/threaded

KEV Catalog EPSS Scores Vendors All CVEs