Messenger@4.0 Security Vulnerabilities and Issues — Messenger@4.0 CVE List

Lucene search

YahooMessenger4.0

5 matches found

CVE•added 2007/02/09 7:28 p.m.•54 views

CVE-2007-0868

Unspecified vulnerability in the Chat Room functionality in Yahoo! Messenger 8.1.0.239 and earlier allows remote attackers to cause a denial of service via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

5CVSS6.5AI score0.00518EPSS

CVE•added 2012/01/19 3:55 p.m.•52 views

CVE-2012-0268

Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.

5.1CVSS8AI score0.01579EPSS

CVE•added 2005/05/02 4:0 a.m.•51 views

CVE-2005-0737

Buffer overflow in Yahoo! Messenger allows remote attackers to execute arbitrary code via the offline mode.

7.5CVSS8.3AI score0.04788EPSS

CVE•added 2002/06/25 4:0 a.m.•48 views

CVE-2002-0322

Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote attackers to gain privileges of other users via sniffing.

7.5CVSS6.9AI score0.00717EPSS

CVE•added 2007/10/29 7:0 p.m.•37 views

CVE-2002-2361

The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing.

5.8CVSS7.1AI score0.00274EPSS