12 matches found
EUVD-2007-0864
Malware in sbrugna...
EUVD-2007-4617
Malware in sbrugna...
[Full-disclosure] Yahoo! Messenger Offline Mode Status Remote Buffer Overflow Vulnerability
It has been reported that a remote buffer overflow vulnerability affects Yahoo! Messenger. This issue is due to a failure of the application to securely copy user-supplied input into finite process buffers. It is likely that the attacker must be in the contact list of an unsuspecting user to...
CVE-2005-0243
Yahoo! Messenger 6.0.0.1750, and possibly other versions before 6.0.0.1921, does not properly display long filenames in file dialog boxes, which could allow remote attackers to trick users into downloading and executing programs via file names containing a large number of spaces and multiple file...
Yahoo! Messenger ymsgr URI Arbitrary Script Execution
Binary data 1263.prm...
Yahoo! Messenger 5.6 - File Transfer Buffer Overrun
source: Yahoo! Messenger File Transfer Buffer Overrun Vulnerability Yahoo! Messenger is prone to a remotely exploitable buffer overrun vulnerability. An attacker may trigger this condition by initiating a malformed 'sendfile' request, which the victim user must then accept. This will reportedly...
Yahoo! Messenger 4.0/5.0 - Remote Denial of Service
source: https://www.securityfocus.com/bid/8523/info It has been reported that multiple PC2Phone products are prone to a remote denial of service condition. The problem is said to occur when processing excessive data passed to the programs via a UDP packet and could result in the product crashing...
CVE-2002-0032
Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary script as other users via the addview parameter of a ymsgr URI...
CVE-2002-0032
Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary script as other users via the addview parameter of a ymsgr URI...
Yahoo! Messenger allows arbitrary users to be added to buddy list without proper authorization
Overview Yahoo! Messenger is an instant messaging client. There is a vulnerability in Yahoo! Messenger that permits a remote user to add arbitrary users to the victim's buddy list. Description Yahoo! Messenger allows users to view content only from users on their buddy list. An attacker could cra...
Yahoo! Messenger is vulnerable to DoS via multiple messages from spoofed names
Overview Yahoo! Messenger is an instant messaging client. A report indicates that there is a vulnerability that permits an attacker to spoof the source user name of a Yahoo! Messenger message. Description Yahoo! Messenger permits a user to place users on an ignore list. A vulnerability exists tha...
CVE-2002-0320
CVE-2002-0320: Buffer overflow in Yahoo! Messenger 5.0 allows a remote attacker to cause a denial of service and possibly execute arbitrary code via a long message or the IMvironment field. The CERT advisories specify a remotely exploitable overflow in the message field and in the IMvironment fie...