Two Yahoo! Messenger Vulnerabilities

Friday, February 18th, 2005
by Marc Erickson

Yahoo! Messenger Audio Setup Wizard Privilege Escalation

Secunia Advisory: SA11815

Critical: Less critical

Impact: Privilege escalation

Where: Local system

Solution Status: Vendor Patch

Software: Yahoo! Messenger 5.x, Yahoo! Messenger 6.x…

Solution:
Update to version 6.0.0.1921 or later.
http://messenger.yahoo.com/“

“Yahoo! Messenger File Transfer Filename Spoofing

Secunia Advisory: SA13712

Critical: Less critical

Impact: Spoofing

Where: From remote

Solution Status: Vendor Patch

Software: Yahoo! Messenger 6.x

Description:
Secunia Research has discovered a vulnerability in Yahoo! Messenger, which can be exploited by malicious people to trick users into executing malicious files.

The problem is that files with long filenames are not displayed correctly in the file transfer dialogs. This can be exploited to trick users into accepting and potentially executing malicious files.

Successful exploitation requires that the option “Hide extension for known file types” is enabled in Windows (default setting).

The vulnerability has been confirmed in version 6.0.0.1750. Other versions may also be affected.

Solution: Update to version 6.0.0.1921 or later.
http://messenger.yahoo.com/“

One Comment

Annette

February 20th, 2007
at 7:22am

I have had to unistall Yahoo messenegr 3 times now, thelast time it took over the computer, sending myself and the pc into orbit. The screen displayed in enormous print and icons, and it kept changing, with windows opening all over the place. So ~ no good for me thanks

What Do You Think?

Want to Start a Blog Here for Free?

Are you an expert in one subject or another? If your goal is to help others and dispense your hard-earned information back to the community, get involved in our community site today! You can write about anything - no matter the topic. Exceptional candidates will be offered the chance to contribute to (and generate revenue from) the main Lockergnome site. Join us today!

Environment - Dec 2, 2008

New Environmental Threat Discovered In North American Lakes

Down’s Symptoms May Be Treatable In The Womb
Tuesday, December 2, 2008
A Carbon-Neutral Way To Power Your Home
Tuesday, December 2, 2008
Using Invisibility To Increase Visibility
Monday, December 1, 2008
New Approaches Make Retinal Detachment Highly Treatable
Monday, December 1, 2008
UCLA Researchers Create Polymer Solar Cells With Higher Efficiency Levels
Monday, December 1, 2008

Internet - Nov 26, 2008

AskPatty.com Launches The Ultimate Experience For Women Car Buyers

Gray’s Paradox Solved: Researchers Discover Secret of Speedy Dolphins
Wednesday, November 26, 2008
Global Warming Is Changing Organic Matter In Soil
Wednesday, November 26, 2008
Indigo Ointment May Help Treat Patients With Psoriasis
Tuesday, November 25, 2008
Evolution Of The Visual System Is Key To Abstract Art
Tuesday, November 25, 2008
How Often Will You Use That Treadmill?
Tuesday, November 25, 2008

Environment - Nov 20, 2008

Effective Global Regulation

1 In 4 Gulf War Veterans Suffers From Illness Caused By Toxic Exposure
Thursday, November 20, 2008
Water Vapor Confirmed As Major Player In Climate Change
Thursday, November 20, 2008
World’s Earliest Nuclear Family Found
Wednesday, November 19, 2008
New Life Beneath Sea And Ice
Wednesday, November 19, 2008
‘Super-Aged’ Brains Reveal First Secrets Of Sharp Memory In Old Age
Wednesday, November 19, 2008

Energy - Nov 18, 2008

Hybrid Cars Too Quiet For Pedestrian Safety?

New Bacteria Discovered In Raw Milk
Tuesday, November 18, 2008
Scientists Self-Censor In Response To Political Controversy
Tuesday, November 18, 2008
MIT Analysis Shows How Cap-And-Trade Plans Can Cut Greenhouse Emissions
Monday, November 17, 2008
Antibodies To Cockroach And Mouse Proteins Associated With Asthma And Allergies Risk
Monday, November 17, 2008
New Enzyme Could Revolutionise Production Of Plastics
Monday, November 17, 2008

Two Yahoo! Messenger Vulnerabilities

Tags

Categories

One Comment

Annette

February 20th, 2007
at 7:22am

What Do You Think?

Want to Start a Blog Here for Free?

Environment - Dec 2, 2008

New Environmental Threat Discovered In North American Lakes

Internet - Nov 26, 2008

AskPatty.com Launches The Ultimate Experience For Women Car Buyers

Environment - Nov 20, 2008

Effective Global Regulation

Energy - Nov 18, 2008

Hybrid Cars Too Quiet For Pedestrian Safety?

What else is new in Tech News Watch?

Using Invisibility To Increase Visibility

New Approaches Make Retinal Detachment Highly Treatable

UCLA Researchers Create Polymer Solar Cells With Higher Efficiency Levels

AskPatty.com Launches The Ultimate Experience For Women Car Buyers

Gray’s Paradox Solved: Researchers Discover Secret of Speedy Dolphins

Random Posts From the Archives

New Environmental Threat Discovered In North American Lakes

Down’s Symptoms May Be Treatable In The Womb

A Carbon-Neutral Way To Power Your Home

Using Invisibility To Increase Visibility

New Approaches Make Retinal Detachment Highly Treatable

Further Reading

Tags

Categories

One Comment

Annette

What Do You Think?

Want to Start a Blog Here for Free?

Environment - Dec 2, 2008

Internet - Nov 26, 2008

Environment - Nov 20, 2008

Energy - Nov 18, 2008

What else is new in Tech News Watch?

Random Posts From the Archives