Yahoo! Messenger Download Feature Long Filename Overflow

2004-01-08T10:03:37
ID OSVDB:3437
Type osvdb
Reporter Tri Huynh(trihuynh@zeeup.com)
Modified 2004-01-08T10:03:37

Description

Vulnerability Description

A remote overflow exists in Yahoo! Messenger. The Yahoo! Messenger fails to validate the length of a filename when downloading resulting in a buffer overflow. With a specially crafted request, an attacker can cause the execution of arbitrary code resulting in a loss of integrity.

Solution Description

Upgrade to version 5.6.0.1358 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A remote overflow exists in Yahoo! Messenger. The Yahoo! Messenger fails to validate the length of a filename when downloading resulting in a buffer overflow. With a specially crafted request, an attacker can cause the execution of arbitrary code resulting in a loss of integrity.

References:

Secunia Advisory ID:10573 Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=107357996802255&w=2 ISS X-Force ID: 14171 Generic Exploit URL: http://www.packetstormsecurity.nl/0401-advisories/yahooIM.txt CVE-2004-0043