Lucene search

K
YahooMessenger5.0

11 matches found

CVE
CVE
added 2003/04/02 5:0 a.m.81 views

CVE-2002-0032

Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary script as other users via the addview parameter of a ymsgr URI.

7.5CVSS7.4AI score0.02942EPSS
CVE
CVE
added 2007/02/09 7:28 p.m.54 views

CVE-2007-0868

Unspecified vulnerability in the Chat Room functionality in Yahoo! Messenger 8.1.0.239 and earlier allows remote attackers to cause a denial of service via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

5CVSS6.5AI score0.00518EPSS
CVE
CVE
added 2002/06/25 4:0 a.m.53 views

CVE-2002-0320

Buffer overflow in Yahoo! Messenger 5.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) message or (2) IMvironment field.

7.5CVSS8AI score0.10307EPSS
CVE
CVE
added 2012/01/19 3:55 p.m.52 views

CVE-2012-0268

Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.

5.1CVSS8AI score0.01579EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.51 views

CVE-2005-0737

Buffer overflow in Yahoo! Messenger allows remote attackers to execute arbitrary code via the offline mode.

7.5CVSS8.3AI score0.04788EPSS
CVE
CVE
added 2006/12/15 10:28 p.m.48 views

CVE-2006-6603

Buffer overflow in the YMMAPI.YMailAttach ActiveX control (ymmapi.dll) before 2005.1.1.4 in Yahoo! Messenger allows remote attackers to execute arbitrary code via a crafted HTML document. NOTE: some details were obtained from third party information.

9.3CVSS7.7AI score0.06449EPSS
CVE
CVE
added 2002/06/25 4:0 a.m.41 views

CVE-2002-0321

Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks.

5CVSS6.7AI score0.0233EPSS
CVE
CVE
added 2005/05/28 4:0 a.m.39 views

CVE-2002-1664

Yahoo! Messenger before February 2002 allows remote attackers to add arbitrary users to another user's buddy list and possibly obtain sensitive information.

6.4CVSS7.2AI score0.01488EPSS
CVE
CVE
added 2005/05/28 4:0 a.m.38 views

CVE-2002-1665

Buffer overflow in Yahoo! Messenger before February 2002 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long set_buddygrp field.

7.5CVSS8.4AI score0.04794EPSS
CVE
CVE
added 2007/10/29 7:0 p.m.37 views

CVE-2002-2361

The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing.

5.8CVSS7.1AI score0.00274EPSS
CVE
CVE
added 2002/07/26 4:0 a.m.36 views

CVE-2002-0031

Buffer overflows in Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) addview, or (6) addfriend.

4.6CVSS7.7AI score0.21415EPSS