Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo messenger vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-3191
Multiple SQL injection vulnerabilities in usercp.php in mForum 0.1a, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) City, (2) Interest, (3) Email, (4) Icq, (5) msn, or (6) Yahoo Messenger field in an edit_profile acti...
Marcioforum Mforum 0.1a
1 EDB exploit
6.4
CVSSv2
CVE-2002-1664
Yahoo! Messenger before February 2002 allows remote malicious users to add arbitrary users to another user's buddy list and possibly obtain sensitive information.
Yahoo Messenger 5.0
6
CVSSv2
CVE-2007-3638
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users, who are listed in an address book, to execute arbitrary code via unspecified vectors, aka ZD-00000005. NOTE: this information is based upon a vague advisory by a vulnerability information sal...
Yahoo Messenger 8.1
1 EDB exploit
5.8
CVSSv2
CVE-2002-2361
The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote malicious users to install trojan programs via DNS spoofing.
Yahoo Messenger 4.0
Yahoo Messenger 5.0
Yahoo Messenger 5.5
5.1
CVSSv2
CVE-2012-0268
Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger prior to 11.5.0.155, when photo sharing is enabled, might allow remote malicious users to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.
Yahoo Messenger 7.0
Yahoo Messenger 5.6.0.1358
Yahoo Messenger 7.5.0.814
Yahoo Messenger 5.6.0.1356
Yahoo Messenger 8.1.0.239
Yahoo Messenger 5.0.1065
Yahoo Messenger 5.5.1249
Yahoo Messenger 8.1.0.413
Yahoo Messenger 10.0.0.1241
Yahoo Messenger 10.0.0.1102
Yahoo Messenger 10.0.0.542
Yahoo Messenger 10.0.0.525
Yahoo Messenger 9.0.0.922
Yahoo Messenger 9.0.0.907
Yahoo Messenger 9.0.0.797
Yahoo Messenger 8.1.0.419
Yahoo Messenger 3.0
Yahoo Messenger 1.0
Yahoo Messenger
Yahoo Messenger 3.0.1
Yahoo Messenger 2.0.1.4
Yahoo Messenger 8.1.0.402
5
CVSSv2
CVE-2007-5017
Absolute path traversal vulnerability in a certain ActiveX control in the CYFT object in ft60.dll in Yahoo! Messenger 8.1.0.421 allows remote malicious users to force a download, and create or overwrite arbitrary files via a full pathname in the second argument to the GetFile met...
Yahoo Messenger 8.1.0.421
1 EDB exploit
5
CVSSv2
CVE-2007-4635
Yahoo! Messenger 8.1.0.209 and 8.1.0.402 allows remote malicious users to cause a denial of service (application crash) via certain file-transfer packets, possibly involving a buffer overflow, as demonstrated by ym8bug.exe. NOTE: this might be related to CVE-2007-4515. NOTE: the ...
Yahoo Messenger 8.1.0.209
Yahoo Messenger 8.1.0.402
1 EDB exploit
5
CVSSv2
CVE-2007-0868
Unspecified vulnerability in the Chat Room functionality in Yahoo! Messenger 8.1.0.239 and previous versions allows remote malicious users to cause a denial of service via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely fr...
Yahoo Messenger 4.0
Yahoo Messenger 5.0
Yahoo Messenger 5.0.1046
Yahoo Messenger 5.6.0.1351
Yahoo Messenger 5.6.0.1355
Yahoo Messenger 7.0.438
Yahoo Messenger 7.5.0.814
Yahoo Messenger 5.5
Yahoo Messenger 5.5.1249
Yahoo Messenger 6.0
Yahoo Messenger 6.0.0.1643
Yahoo Messenger 8.0 2005.1.1.4
Yahoo Messenger 8.1.0.209
Yahoo Messenger 5.6
Yahoo Messenger 5.6.0.1347
Yahoo Messenger 6.0.0.1750
Yahoo Messenger 6.0.0.1921
Yahoo Messenger 8.1.0.239
Yahoo Messenger 5.0.1065
Yahoo Messenger 5.0.1232
Yahoo Messenger 5.6.0.1356
Yahoo Messenger 5.6.0.1358
5
CVSSv2
CVE-2006-5563
Unspecified vulnerability in Yahoo! Messenger (Service 18) prior to 8.1.0.195 allows remote malicious users to cause a denial of service (NULL dereference and application crash) via a crafted room name in a Conference Invite. NOTE: the provenance of this information is unknown; t...
Yahoo Messenger 8.0
5
CVSSv2
CVE-2006-3298
Yahoo! Messenger 7.5.0.814 and 7.0.438 allows remote malicious users to cause a denial of service (crash) via messages that contain non-ASCII characters, which triggers the crash in jscript.dll.
Yahoo Messenger 7.0.438
Yahoo Messenger 7.5.0.814
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »