Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo messenger vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2005-0242
The Audio Setup Wizard (asw.dll) in Yahoo! Messenger 6.0.0.1750, and possibly other versions, allows malicious users to arbitrary code by placing a malicious ping.exe program into the Messenger program directory, which is installed with weak default permissions.
Yahoo Messenger 5.6
Yahoo Messenger 6.0.0.1750
Yahoo Messenger 5.5
Yahoo Messenger 5.6.0.1351
Yahoo Messenger 6.0
383
VMScore
CVE-2006-3539
Multiple cross-site scripting (XSS) vulnerabilities in DKScript.com Dragon's Kingdom Script 1.0 allow remote malicious users to inject arbitrary web script or HTML via a javascript URI in the SRC attribute of an IMG element in the (1) Subject and (2) Message fields in a do=w...
Dkscript Dragons Kingdom Script 1.0
265
VMScore
CVE-2003-1129
Buffer overflow in the Yahoo! Audio Conferencing (aka Voice Chat) ActiveX control prior to 1,0,0,45 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a URL with a long hostname to Yahoo! Messenger or Yahoo! Chat.
Yahoo Audio Conferencing Activex Control 1.0.0.43
1 EDB exploit
265
VMScore
CVE-2003-1135
Buffer overflow in Yahoo! Messenger 5.6 allows remote malicious users to cause a denial of service (crash) via a file send request (sendfile) with a large number of "%" (percent) characters after the Yahoo ID.
Yahoo Messenger 5.6
1 EDB exploit
231
VMScore
CVE-2006-4975
Yahoo! Messenger for WAP permits saving messages that contain JavaScript, which allows user-assisted remote malicious users to inject arbitrary web script or HTML via a URL at the online service.
Yahoo Messenger
187
VMScore
CVE-2005-1671
The Logfile feature in Yahoo! Messenger 5.x up to and including 6.0 can be activated by a YMSGR: URL and writes all output to a single ypager.log file, even when there are multiple users, and does not properly warn later users that the feature has been enabled, which allows local...
Yahoo Messenger 5.6
Yahoo Messenger 5.5
Yahoo Messenger 5.6.0.1351
Yahoo Messenger 6.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5