Lucene search

K

MitreCVELIST:CVE-2007-1680

HistoryApr 06, 2007 - 1:00 a.m.

CVE-2007-1680

2007-04-0601:00:00

mitre

www.cve.org

1

7.9 High

AI Score

Confidence

Low

0.672 Medium

EPSS

Percentile

98.0%

Stack-based buffer overflow in the createAndJoinConference function in the AudioConf ActiveX control (yacscom.dll) in Yahoo! Messenger before 20070313 allows remote attackers to execute arbitrary code via long (1) socksHostname and (2) hostname properties.

References

messenger.yahoo.com/security_update.php?id=031207

osvdb.org/34319

secunia.com/advisories/24742

securityreason.com/securityalert/2523

www.kb.cert.org/vuls/id/388377

www.securityfocus.com/archive/1/464607/100/0/threaded

www.securityfocus.com/bid/23291

www.securitytracker.com/id?1017867

www.vupen.com/english/advisories/2007/1219

www.zerodayinitiative.com/advisories/ZDI-07-012.html

exchange.xforce.ibmcloud.com/vulnerabilities/33408

7.9 High

AI Score

Confidence

Low

0.672 Medium

EPSS

Percentile

98.0%

Related for CVELIST:CVE-2007-1680

checkpoint_advisories1 zdi1 saint4 cve1 nessus1 securityvulns2 prion1 nvd1 cert1