YahooPOPS! Multiple Remote Buffer Overflow Vulnerabilities

YahooPOPS! is reported to contain multiple buffer-overflow vulnerabilities. These vulnerabilities are due to application's failure to properly bounds-check user-supplied input data before copying it into finite-sized memory buffers. This allows attackers to overwrite adjacent memory, potentially overwriting critical memory structures and altering the flow of execution. This will likely allow for remote code execution in the context of the affected application.

Versions of YahooPOPS! from 0.4 through 0.6 are reportedly affected by these vulnerabilities.


Privacy Statement
Copyright 2010, SecurityFocus