date: 2014-01-28T00:00:00.000Z
summary: NULL pointer dereference parsing OIM data in MSN
discoveredBy: Fabian Yamaguchi and Christian Wressnegger of the University of Goettingen
A malicious server or man-in-the-middle could send us a specially-crafted XML
response that results in a NULL pointer dereference.
Check for NULL before calling
`atoi()`.