Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo messenger vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2002-0322
Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote malicious users to gain privileges of other users via sniffing.
Yahoo Messenger 4.0
605
VMScore
CVE-2007-3638
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users, who are listed in an address book, to execute arbitrary code via unspecified vectors, aka ZD-00000005. NOTE: this information is based upon a vague advisory by a vulnerability information sal...
Yahoo Messenger 8.1
1 EDB exploit
570
VMScore
CVE-2002-1664
Yahoo! Messenger before February 2002 allows remote malicious users to add arbitrary users to another user's buddy list and possibly obtain sensitive information.
Yahoo Messenger 5.0
516
VMScore
CVE-2002-2361
The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote malicious users to install trojan programs via DNS spoofing.
Yahoo Messenger 5.5
Yahoo Messenger 5.0
Yahoo Messenger 4.0
505
VMScore
CVE-2007-5017
Absolute path traversal vulnerability in a certain ActiveX control in the CYFT object in ft60.dll in Yahoo! Messenger 8.1.0.421 allows remote malicious users to force a download, and create or overwrite arbitrary files via a full pathname in the second argument to the GetFile met...
Yahoo Messenger 8.1.0.421
1 EDB exploit
505
VMScore
CVE-2007-4635
Yahoo! Messenger 8.1.0.209 and 8.1.0.402 allows remote malicious users to cause a denial of service (application crash) via certain file-transfer packets, possibly involving a buffer overflow, as demonstrated by ym8bug.exe. NOTE: this might be related to CVE-2007-4515. NOTE: the ...
Yahoo Messenger 8.1.0.402
Yahoo Messenger 8.1.0.209
1 EDB exploit
505
VMScore
CVE-2006-3298
Yahoo! Messenger 7.5.0.814 and 7.0.438 allows remote malicious users to cause a denial of service (crash) via messages that contain non-ASCII characters, which triggers the crash in jscript.dll.
Yahoo Messenger 7.5.0.814
Yahoo Messenger 7.0.438
1 EDB exploit
505
VMScore
CVE-2005-1618
The YMSGR URL handler in Yahoo! Messenger 5.x up to and including 6.0 allows remote malicious users to cause a denial of service (disconnect) via a room login or a room join request packet with a third : (colon) and an & (ampersand), which causes Messenger to send a corrupted...
Yahoo Messenger 5.6
Yahoo Messenger 5.5
Yahoo Messenger 6.0
1 EDB exploit
470
VMScore
CVE-2002-0031
Buffer overflows in Yahoo! Messenger 5,0,0,1064 and previous versions allows remote malicious users to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) addview, or (6) addfriend.
Yahoo Messenger 5.0
2 EDB exploits
454
VMScore
CVE-2012-0268
Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger prior to 11.5.0.155, when photo sharing is enabled, might allow remote malicious users to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.
Yahoo Messenger 9.0.0.2123
Yahoo Messenger 10.0.0.525
Yahoo Messenger 8.1.0.419
Yahoo Messenger 5.6
Yahoo Messenger 8.1.0.244
Yahoo Messenger 1.0
Yahoo Messenger 8.1.0.416
Yahoo Messenger 9.0.0.2162
Yahoo Messenger 5.6.0.1355
Yahoo Messenger 7.5.0.814
Yahoo Messenger 6.1
Yahoo Messenger 8.1.0.249
Yahoo Messenger 8.1.0.239
Yahoo Messenger 7.0.0.437
Yahoo Messenger 8.0.1
Yahoo Messenger 8.0.0.701
Yahoo Messenger 5.6.0.1358
Yahoo Messenger 8.1.0.413
Yahoo Messenger 8.0
Yahoo Messenger 9.0.0.2160
Yahoo Messenger 6.0.0.1750
Yahoo Messenger 1.0.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
remote code execution
CVE-2024-37080
CVE-2024-5182
CVE-2024-4390
CVE-2024-6100
brute force
CVE-2021-47581
file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »