New MSN Messenger Flaw
Are you using MSN Messenger and tend to accept untrusted webcam sessions? Congratulations, you're on the right track to get an injection of hostile code. Fortunately, not all the Messenger versions are affected by the flaw.
August 30, 2007
The flaw may be exploited in order to allow hackers to execute arbitrary code on the victim's machine and thus, compromise the system. However, it's mostly up to the user to fend off such attempts: decline incoming webcam invitations from unknown sources.
The heap-based buffer overflow vulnerability has been rated highly critical. Up till now it has only been reported in in version 7.x, but chances are that other versions may also be affected.
At present time there are no available patches for the vulnerability. Aside from being careful about what webcam invitations they accept, users are also encouraged to upgrade to Windows Live Messenger 8.1 or later, which are not affected.