You are currently offline, waiting for your internet to reconnect

Your browser is out-of-date

You need to update your browser to use the site.

Update to the latest version of Internet Explorer

MS08-050: Vulnerability in Windows Messenger could allow information disclosure

Support for Windows XP has ended

Microsoft ended support for Windows XP on April 8, 2014. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

INTRODUCTION
Microsoft has released security bulletin MS08-050. To view the complete security bulletin, visit one of the following Microsoft Web sites:

How to obtain help and support for this security update

Help installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help protect your computer that is running Windows from viruses and malware:Virus Solution and Security Center

Local support according to your country: International Support

Additional information about this security update

For more information about this security update and for information about any known issues with specific releases of this software, click the following article number to view the article in the Microsoft Knowledge Base:
946648 MS08-050: Description of the update for Windows Messenger 4.7 for Windows XP: August 12, 2008
954723 MS08-050: Description of the update for Windows Messenger 4.7 for Windows Server 2003: August 12, 2008
899283 How to obtain the latest version of Windows Messenger 5.1

File information

The English (United States) version of this security update has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.

Windows XP updates

For all supported x64-based editions of Windows XP Professional
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Wmsgsc.dll4.7.0.300294,72011-Jun-200803:42x86SP1 or SP2SP2GDR\WOW
Wmsgsc.dll4.7.0.300294,72011-Jun-200803:13x86SP1 or SP2SP2QFE\WOW
For all supported 32-bit editions of Windows XP
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Msgsc.dll4.7.0.300283,96802-May-200814:22x86SP2SP2GDR
Msgsc.dll4.7.0.300283,96802-May-200813:30x86SP2SP2QFE
Msgsc.dll4.7.0.300283,96802-May-200814:01x86SP3SP3GDR
Msgsc.dll4.7.0.300283,96802-May-200813:42x86SP3SP3QFE

Windows Server 2003 updates

For all supported 32-bit editions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Msgsc.dll4.7.0.300294,72024-Jun-200815:45x86SP1 or SP2SP2GDR
Msgsc.dll4.7.0.300294,72024-Jun-200817:42x86SP1 or SP2SP2QFE
For all supported x64-based editions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Wmsgsc.dll4.7.0.300294,72025-Jun-200806:36x86SP1 or SP2SP2GDR\WOW
Wmsgsc.dll4.7.0.300294,72025-Jun-200806:27x86SP1 or SP2SP2QFE\WOW
For all supported Itanium-based editions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatformSP requirementService branch
Wmsgsc.dll4.7.0.300294,72025-Jun-200806:26x86SP1 or SP2SP2GDR\WOW
Wmsgsc.dll4.7.0.300294,72025-Jun-200806:20x86SP1 or SP2SP2QFE\WOW
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE WinNT Win2000
Properties

Article ID: 955702 - Last Review: 05/09/2012 17:29:00 - Revision: 3.0

  • Microsoft Windows Server 2003 Service Pack 1
  • Microsoft Windows Server 2003, Datacenter x64 Edition
  • Microsoft Windows Server 2003, Enterprise x64 Edition
  • Microsoft Windows Server 2003, Standard x64 Edition
  • Microsoft Windows XP Professional x64 Edition
  • Microsoft Windows Server 2003 Service Pack 2
  • Microsoft Windows XP Service Pack 2
  • Microsoft Windows XP Service Pack 3
  • atdownload kbbug kbexpertiseinter kbfix kbPubTypeKC kbsecbulletin kbsecurity kbsecvulnerability KB955702
Feedback
')[0].appendChild(m);" onload="var m=document.createElement('meta');m.name='ms.dqp0';m.content='false';document.getElementsByTagName('head')[0].appendChild(m);" src="http://c1.microsoft.com/c.gif?">