CVE Database · CVE-2006-3250
CVSS v3.1
N/A
EPSS
6.85%
Published
Jun 27, 2006
Modified
Apr 15, 2026
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Heap-based buffer overflow in Windows Live Messenger 8.0 allows user-assisted attackers to execute arbitrary code via a crafted Contact List (.ctt) file, which triggers the overflow when it is imported by the user.
Affected Products (1)
References (12)
