Yahoo Instant Messenger YAUTO.DLL buffer overflow Vulnerability

Saturday, January 17th, 2004
by Marc Erickson

Risk
High

Date Discovered
12-03-2003

Description

A problem has been identified in the handling of some types of requests by ActiveX controls installed with Yahoo! Messenger, exposing a remotely exploitable buffer overrun. Because of this, it may be possible for an attacker to execute arbitrary code on a vulnerable host.
Components Affected
Yahoo! Messenger 5.6 .0.1347
Yahoo! Messenger 5.6…

The vendor has released an update to address this issue:

Yahoo! Messenger 5.6 .0.1347:
Yahoo! Upgrade update4
http://messenger.yahoo.com/security/update4.html

Yahoo! Messenger 5.6:
Yahoo! Upgrade update4
http://messenger.yahoo.com/security/update4.html“

One Comment

Melissa Manie

August 16th, 2007
at 2:00pm

we are trying to find out what is going on with yahoo instant messenger. The chat rooms are unusable right now. Is there a chance this is going to be fixed?

What Do You Think?

Want to Start a Blog Here for Free?

Are you an expert in one subject or another? If your goal is to help others and dispense hard-earned information back to the community, stake a claim on your very own Lockergnome blog today! You can write about anything - no matter the topic. Sign-up to start blogging!

Science - Oct 10, 2008

University Professor Stresses Links Between US Navy Sonar And Whale Strandings

All Counterterrorism Programs That Collect And Mine Data Should Be Evaluated For Effectiveness
Friday, October 10, 2008
Sustainable Electricity Sources Remain Expensive
Thursday, October 9, 2008
Nanoscopic Screening Process To Speed Drug Discovery
Thursday, October 9, 2008
A Wireless Network Using Visible Light?
Thursday, October 9, 2008
New Blood Test For Down Syndrome
Wednesday, October 8, 2008

Health - Oct 8, 2008

UCI Study Shows How Fatty Foods Curb Hunger

Discovering Drugs, Biofuels In Tropical Seas
Wednesday, October 8, 2008
Students At Rice Learn How Vulnerable Electronic Voting Really Is
Tuesday, October 7, 2008
Using A Fan During Sleep Associated With Lower Risk Of SIDS
Tuesday, October 7, 2008
Customers’ Fixation On Minimum Payments Drives Up Credit Card Bills
Tuesday, October 7, 2008
Chumby
Monday, October 6, 2008

Energy - Oct 3, 2008

Scientists Explore Putting Electric Cars On A Two-Way Power Street

APA Letter To Bush: New Policy Limits Psychologist Involvement In Interrogations
Thursday, October 2, 2008
Sound & Vision Magazine
Thursday, October 2, 2008
Microvision RoV Wireless Laser Barcode Scanner
Thursday, October 2, 2008
Scientists Identify Gene That May Contribute To Improved Rice Yield
Thursday, October 2, 2008
6 Environmental Research Studies Reveal Critical Health Risks From Plastic
Thursday, October 2, 2008

Books, Science - Oct 1, 2008

Head First Physics

Nanotech And Synbio: Americans Don’t Know What’s Coming
Wednesday, October 1, 2008
Tenori-On
Wednesday, October 1, 2008
Could Cities Be The Solution To Climate Change?
Wednesday, October 1, 2008
Green Coffee-Growing Practices Buffer Climate-Change Impacts
Tuesday, September 30, 2008
Remember MST3K?
Tuesday, September 30, 2008

64 queries / 3.078 seconds.