Lucene search
K

6 matches found

Check Point Advisories
Check Point Advisories
added 2007/09/10 12:0 a.m.3 views

Yahoo! Widgets YDP ActiveX Control Buffer Overflow (CVE-2007-4034)

A buffer overflow vulnerability has been reported in Yahoo! Widgets YDPCTL.dll. Yahoo! Widgets is a free application platform for Mac OS X and Microsoft Windows.It offers a large set of desktop Widgets that perform a variety of functions. To trigger this issue, an attacker may create a malicious...

9.3CVSS7.3AI score0.1296EPSS
Exploits6
CERT
CERT
added 2007/08/17 12:0 a.m.29 views

Yahoo! Installer Plugin for Widgets ActiveX control stack buffer overflow

Overview The Yahoo! Installer Plugin for Widgets ActiveX control contains a stack buffer overflow, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Yahoo! Widgets is a program for Windows that allows the user to run applications call...

9.3CVSS6.9AI score0.1296EPSS
Exploits6References4
Saint
Saint
added 2007/08/03 12:0 a.m.23 views

Yahoo! Widgets ActiveX control GetComponentVersion buffer overflow

Added: 08/03/2007 CVE: CVE-2007-4034 BID: 25086 OSVDB: 37705 Background Yahoo! Widgets is desktop software which runs any number of small, real-time, Internet applications called widgets. Problem A buffer overflow vulnerability in the YDPCTL ActiveX Control allows command execution when a user...

9.3CVSS6.9AI score0.1296EPSS
Exploits6
Saint
Saint
added 2007/08/03 12:0 a.m.19 views

Yahoo! Widgets ActiveX control GetComponentVersion buffer overflow

Added: 08/03/2007 CVE: CVE-2007-4034 BID: 25086 OSVDB: 37705 Background Yahoo! Widgets is desktop software which runs any number of small, real-time, Internet applications called widgets. Problem A buffer overflow vulnerability in the YDPCTL ActiveX Control allows command execution when a user...

9.3CVSS6.9AI score0.1296EPSS
Exploits6
CVE
CVE
added 2007/07/27 10:0 p.m.63 views

CVE-2007-4034

The vulnerability CVE-2007-4034 affects Yahoo! Widgets’ ActiveX control YDPCTL.dll (YDPCTL.YDPControl.1) in Yahoo! Widgets before 4.0.5. A stack-based buffer overflow is triggered by a long argument to GetComponentVersion(), allowing remote execution of arbitrary code. Supported details in the co...

9.3CVSS7.8AI score0.1296EPSS
Exploits6References7Affected Software1
Kaspersky
Kaspersky
added 2007/07/27 12:0 a.m.86 views

KLA10408 ACE vulnerability in Yahoo! Widgets

A buffer overflow was found in Yahoo! Widgets. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed argument. Original advisories - Related products Yahoo!-Widgets CVE list CVE-2007-4034 critical Solutio...

9.3CVSS7.8AI score0.1296EPSS
Exploits6References2
Rows per page
Query Builder