Lucene search

[email protected]CVE-2007-4635

HistoryAug 31, 2007 - 11:17 p.m.

CVE-2007-4635

2007-08-3123:17:00

CWE-20

CWE-119

[email protected]

web.nvd.nist.gov

yahoo! messenger

8.1.0.209

8.1.0.402

remote dos

buffer overflow

file transfer

cve-2007-4635

6.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.198 Low

EPSS

Percentile

96.3%

JSON

Yahoo! Messenger 8.1.0.209 and 8.1.0.402 allows remote attackers to cause a denial of service (application crash) via certain file-transfer packets, possibly involving a buffer overflow, as demonstrated by ym8bug.exe. NOTE: this might be related to CVE-2007-4515. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
yahoo:messengeryahoo messengereq8.1.0.402
yahoo:messengeryahoo messengereq8.1.0.209

CPE	Name	Operator	Version
yahoo:messenger	yahoo messenger	eq	8.1.0.402
yahoo:messenger	yahoo messenger	eq	8.1.0.209

References

www.securityfocus.com/bid/25484

6.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.198 Low

EPSS

Percentile

96.3%

JSON

Related for CVE-2007-4635

cvelist2 prion2 nessus1 securityvulns2 packetstorm1 cve1 checkpoint_advisories1