Stack overflow

Multiple stack-based buffer overflows in Yahoo! Messenger 11.5.0.228 and earlier allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via the 1 shortcut or 2 title keys in an emoticons.xml file...

KLA10664 Code execution vulnerability in Yahoo! Messenger

Buffer overflow vulnerability was found in Yahoo! Messenger. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed emoticons.xml file. Technical details Vulnerability caused by...

Yahoo! Messenger 11.5.0.228 Buffer Overflow Exploit

Multiple buffer overflow vulnerabilities have been identified in Yahoo! Messenger versions 11.5.0.228 and below. 1. ADVISORY INFORMATION ----------------------- Product: Yahoo! Messenger Vendor URL: www.yahoo.com Type: Stack-based Buffer Overflow CWE-121 Date found: 2014-05-02 Date published:...

Yahoo!: Yahoo! Messenger v11.5.0.228 emoticons.xml shortcut Value Handling Stack-Based Buffer Overflow

Thank you for your submission to Yahoo’s Bug Bounty program. While we recognize the effort that you put into the research and writing of a report for us to evaluate, we will take your report into consideration for any future releases. We appreciate your adherence to responsible disclosure...