CVE-2007-3436

Name of the Vulnerable Software and Affected Versions Microsoft MSN Messenger version 4.7 on Windows XP

Description The issue allows remote attackers to cause a denial of service through resource consumption by sending a flood of SIP INVITE requests to the port specified for voice conversation.

Recommendations For Microsoft MSN Messenger version 4.7 on Windows XP, consider restricting access to the voice conversation port to minimize the risk of exploitation. As a temporary workaround, limiting the number of incoming SIP INVITE requests may help mitigate the issue until a more permanent solution is available.