6 matches found
Yahoo! Widgets YDP ActiveX Control Buffer Overflow (CVE-2007-4034)
A buffer overflow vulnerability has been reported in Yahoo! Widgets YDPCTL.dll. Yahoo! Widgets is a free application platform for Mac OS X and Microsoft Windows.It offers a large set of desktop Widgets that perform a variety of functions. To trigger this issue, an attacker may create a malicious...
Yahoo! Installer Plugin for Widgets ActiveX control stack buffer overflow
Overview The Yahoo! Installer Plugin for Widgets ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Yahoo! Widgets is a program for Windows that allows the user to run applications call...
Yahoo! Widgets ActiveX control GetComponentVersion buffer overflow
Added: 08/03/2007 CVE: CVE-2007-4034 BID: 25086 OSVDB: 37705 Background Yahoo! Widgets is desktop software which runs any number of small, real-time, Internet applications called widgets. Problem A buffer overflow vulnerability in the YDPCTL ActiveX Control allows command execution when a user...
Yahoo! Widgets ActiveX control GetComponentVersion buffer overflow
Added: 08/03/2007 CVE: CVE-2007-4034 BID: 25086 OSVDB: 37705 Background Yahoo! Widgets is desktop software which runs any number of small, real-time, Internet applications called widgets. Problem A buffer overflow vulnerability in the YDPCTL ActiveX Control allows command execution when a user...
CVE-2007-4034
The vulnerability CVE-2007-4034 affects Yahoo! Widgets’ ActiveX control YDPCTL.dll (YDPCTL.YDPControl.1) in Yahoo! Widgets before 4.0.5. A stack-based buffer overflow is triggered by a long argument to GetComponentVersion(), allowing remote execution of arbitrary code. Supported details in the co...
KLA10408 ACE vulnerability in Yahoo! Widgets
A buffer overflow was found in Yahoo! Widgets. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed argument. Original advisories - Related products Yahoo!-Widgets CVE list CVE-2007-4034 critical Solutio...