Yahoo! Messenger Webcam Viewer ActiveX Control Buffer Overflow Vulnerability

Bugtraq ID: 24355
Class: Boundary Condition Error
CVE: CVE-2007-3148
Remote: Yes
Local: No
Published: Jun 06 2007 12:00AM
Updated: Nov 03 2007 12:06AM
Credit: Danny <server.exception@yahoo.com> and eEye Digital Security independently discovered this vulnerability.
Vulnerable: Yahoo! Webcam ActiveX Control 2.0.1 .4
+ Yahoo! Instant Messenger 3.5
+ Yahoo! Instant Messenger build 734
+ Yahoo! Instant Messenger build 733
+ Yahoo! Messenger 5.5
+ Yahoo! Messenger 5.0 .1232
+ Yahoo! Messenger 5.0 .1065
+ Yahoo! Messenger 5.0 .1046
+ Yahoo! Messenger 5.0
+ Yahoo! Messenger 4.0
Yahoo! Messenger 8.0.1
Yahoo! Messenger 8.0
Yahoo! Messenger 8.0.0.863
Yahoo! Messenger 8.0 2005.1.1.4
Not Vulnerable: Yahoo! Messenger 8.1


 

Privacy Statement
Copyright 2010, SecurityFocus