Yahoo Messenger Active X Control Vulnerabilities

By admin | Jun 11, 2007
If you are new here, you may want to subscribe to our feed.

yahoo_messenger_75.jpgSecunia has issued an extremely critical warning (it’s highest warning) for Yahoo Messenger. Both of these exploits compromise components of the webcam Active X controls. And both cause buffer overflows which then allows the malicious person to execute arbitrary code on the victim’s machines. Yahoo has issued a bulletin highlighting the issue.

The two vulnerabilities are:

“1) A boundary error within the Yahoo! Webcam Upload (ywcupl.dll) ActiveX control can be exploited to cause a stack-based buffer overflow by assigning an overly long string to the “Server” property and then calling the “Send()” method.

2) A boundary error within the Yahoo! Webcam Viewer (ywcvwr.dll) ActiveX control can be exploited to cause a stack-based buffer overflow by assigning an overly long string to the “Server” property and then calling the “Receive()” method.”

Download the new version of Yahoo Messenger to solve the problem.

Source: Secunia



Related Posts:

Disable Windows Messenger Service
Typical Messenger SpamThe windows messenger service can be employed to, big surprise, send messages to networked users. It can...

Microsoft Bidding On Yahoo!
After a bit of a hiatus from Paul-Tech, it's good to be back. The computer industry got quite a shock today...

Gaim Crashing Connecting to MSN
I use Gaim and love it. Gaim is a multi-messaging platform that works for Windows, Mac OS X, and...

AOL Instant Messenger Security Issue
Okay, you're chatting with your friends on AIM (AOL Instant Messenger) and suddenly you've been exploited. Somehow, someone has...

Yahoo Apple Facebook Myspace Security Notes
This past week has seen a little spike in security activity across the web. The biggest ones that will...

Leave a Comment

If you would like to make a comment, please fill out the form below.

Name (required)

Email (required)

Website

Comments

© 2007 PaulTech Network, - Daily Blog Tips Themes