Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo messenger vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4391
Heap-based buffer overflow in Kakadu kdu_v32m.dll in Yahoo! Messenger 8.1.0.413 allows remote malicious users to cause a denial of service (application crash) via a certain length field in JPEG2000 data, as demonstrated by sending an "invite to view my webcam" request, ...
Yahoo Messenger 8.1.0.413
2 EDB exploits
NA
CVE-2007-3928
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users to execute arbitrary code via a long e-mail address in an address book entry. NOTE: this might overlap CVE-2007-3638.
Yahoo Messenger 8.1
NA
CVE-2007-3638
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users, who are listed in an address book, to execute arbitrary code via unspecified vectors, aka ZD-00000005. NOTE: this information is based upon a vague advisory by a vulnerability information sal...
Yahoo Messenger 8.1
1 EDB exploit
NA
CVE-2007-3147
Buffer overflow in the Yahoo! Webcam Upload ActiveX control in ywcupl.dll 2.0.1.4 for Yahoo! Messenger 8.1.0.249 allows remote malicious users to execute arbitrary code via a long server property value to the send method. NOTE: some of these details are obtained from third party ...
Yahoo Messenger 8.1.0.249
Yahoo Messenger 8.0.1
Yahoo Messenger 8.0
Yahoo Messenger 2.0.1.4
Yahoo Messenger 8.0 2005.1.1.4
Yahoo Messenger 8.0.0.863
3 EDB exploits
NA
CVE-2007-3148
Buffer overflow in the Yahoo! Webcam Viewer ActiveX control in ywcvwr.dll 2.0.1.4 for Yahoo! Messenger 8.1.0.249 allows remote malicious users to execute arbitrary code via a long server property value to the receive method.
Yahoo Messenger 8.1.0.249
Yahoo Messenger 8.0.1
Yahoo Messenger 8.0
Yahoo Messenger 2.0.1.4
Yahoo Messenger 8.0 2005.1.1.4
Yahoo Messenger 8.0.0.863
2 EDB exploits
NA
CVE-2007-1680
Stack-based buffer overflow in the createAndJoinConference function in the AudioConf ActiveX control (yacscom.dll) in Yahoo! Messenger prior to 20070313 allows remote malicious users to execute arbitrary code via long (1) socksHostname and (2) hostname properties.
Yahoo Messenger 8.1.0.239
Yahoo Messenger 8.0
Yahoo Messenger 8.0 2005.1.1.4
Yahoo Messenger 8.1.0.209
Yahoo Messenger 8.0.0.863
NA
CVE-2007-0868
Unspecified vulnerability in the Chat Room functionality in Yahoo! Messenger 8.1.0.239 and previous versions allows remote malicious users to cause a denial of service via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
Yahoo Messenger 5.6
Yahoo Messenger 5.6.0.1355
Yahoo Messenger 7.5.0.814
Yahoo Messenger 8.1.0.239
Yahoo Messenger 5.6.0.1358
Yahoo Messenger 8.0
Yahoo Messenger 6.0.0.1750
Yahoo Messenger 5.6.0.1347
Yahoo Messenger 5.0.1232
Yahoo Messenger 5.5.1249
Yahoo Messenger 5.5
Yahoo Messenger 6.0.0.1921
Yahoo Messenger 6.0.0.1643
Yahoo Messenger 7.0.438
Yahoo Messenger 5.0
Yahoo Messenger 5.6.0.1351
Yahoo Messenger 8.0 2005.1.1.4
Yahoo Messenger 4.0
Yahoo Messenger 5.0.1065
Yahoo Messenger 8.1.0.209
Yahoo Messenger 5.6.0.1356
Yahoo Messenger 6.0
NA
CVE-2007-0768
Multiple cross-site scripting (XSS) vulnerabilities in the Contact Details functionality in Yahoo! Messenger 8.1.0.209 and previous versions allow user-assisted remote malicious users to inject arbitrary web script or HTML via a javascript: URI in the SRC attribute of an IMG elem...
Yahoo Messenger
1 EDB exploit
NA
CVE-2006-6603
Buffer overflow in the YMMAPI.YMailAttach ActiveX control (ymmapi.dll) prior to 2005.1.1.4 in Yahoo! Messenger allows remote malicious users to execute arbitrary code via a crafted HTML document. NOTE: some details were obtained from third party information.
Yahoo Messenger 5.6
Yahoo Messenger 7.0
Yahoo Messenger 7.5
Yahoo Messenger 5.5
Yahoo Messenger
Yahoo Messenger 5.0
Yahoo Messenger 6.0
NA
CVE-2006-5563
Unspecified vulnerability in Yahoo! Messenger (Service 18) prior to 8.1.0.195 allows remote malicious users to cause a denial of service (NULL dereference and application crash) via a crafted room name in a Conference Invite. NOTE: the provenance of this information is unknown; t...
Yahoo Messenger 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
remote code execution
CVE-2024-37080
CVE-2024-5182
CVE-2024-4390
CVE-2024-6100
brute force
CVE-2021-47581
file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »