4 matches found
Yahoo Messenger JPG Photo Sharing Integer Overflow Vulnerability
This host is installed with Yahoo! Messenger and is prone to integer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbyahoomsgcyimagebofvuln.nasl 6018 2017-04-24 09:02:24Z teissa $ Yahoo Messenger JPG Photo Sharing Integer Overflow Vulnerability Authors: Antu Sanadi Copyright: Copyright ...
Integer overflow
Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow...
CVE-2012-0268
CVE-2012-0268 describes an integer overflow in Yahoo! Messenger’s YImage.dll CYImage::LoadJPG when photo sharing is enabled, leading to a heap-based buffer overflow that could allow remote code execution via a crafted JPG. Affected are Yahoo! Messenger versions up to and including 11.5.0.155 (old...
Yahoo Messenger ".jpg"文件处理缓冲区溢出漏洞
BUGTRAQ ID: 51405 CVE ID: CVE-2012-0268 Yahoo! Messenger是一款流行的即时通信软件。 Yahoo! Messenger在实现上存在安全漏洞,可被恶意用户利用控制用户系统。 此漏洞源于在分配使用图形尺寸值的内存时,"CYImage::LoadJPG"方法YImage.dll中存在整数溢出漏洞,可通过特制的JPG文件造成堆缓冲区溢出。 0 Yahoo! Messenger 11.x 厂商补丁: Yahoo! ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://messenger.yahoo.co...