Yahoo! Instant Messenger Script Injection Vulnerability

Bugtraq ID: 4838
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: May 27 2002 12:00AM
Updated: May 27 2002 12:00AM
Credit: Discovered by Phuong Nguyen <dphuong@yahoo.com>.
Vulnerable: Yahoo! Messenger 5.0
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT Workstation 4.0 SP6a
- Microsoft Windows NT Workstation 4.0 SP5
- Microsoft Windows NT Workstation 4.0 SP4
- Microsoft Windows NT Workstation 4.0 SP3
- Microsoft Windows NT Workstation 4.0 SP2
- Microsoft Windows NT Workstation 4.0 SP1
- Microsoft Windows NT Workstation 4.0
- Microsoft Windows XP Home
Not Vulnerable: Yahoo! Messenger 5.0 .1065


 

Privacy Statement
Copyright 2010, SecurityFocus