Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-4391
Heap-based buffer overflow in Kakadu kdu_v32m.dll in Yahoo! Messenger 8.1.0.413 allows remote malicious users to cause a denial of service (application crash) via a certain length field in JPEG2000 data, as demonstrated by sending an "invite to view my webcam" request, ...
Yahoo Messenger 8.1.0.413
2 EDB exploits
5
CVSSv2
CVE-2006-5563
Unspecified vulnerability in Yahoo! Messenger (Service 18) prior to 8.1.0.195 allows remote malicious users to cause a denial of service (NULL dereference and application crash) via a crafted room name in a Conference Invite. NOTE: the provenance of this information is unknown; t...
Yahoo Messenger 8.0
6.8
CVSSv2
CVE-2007-6228
Stack-based buffer overflow in the Helper class in the yt.ythelper.2 ActiveX control in Yahoo! Toolbar 1.4.1 allows remote malicious users to cause a denial of service (browser crash) via a long argument to the c method.
Yahoo Toolbar 1.4.1
1 EDB exploit
7.5
CVSSv2
CVE-2002-0322
Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote malicious users to gain privileges of other users via sniffing.
Yahoo Messenger 4.0
5
CVSSv2
CVE-2007-5017
Absolute path traversal vulnerability in a certain ActiveX control in the CYFT object in ft60.dll in Yahoo! Messenger 8.1.0.421 allows remote malicious users to force a download, and create or overwrite arbitrary files via a full pathname in the second argument to the GetFile met...
Yahoo Messenger 8.1.0.421
1 EDB exploit
5
CVSSv2
CVE-2000-0047
Buffer overflow in Yahoo Pager/Messenger client allows remote malicious users to cause a denial of service via a long URL within a message.
Yahoo Pager 733
4.6
CVSSv2
CVE-2002-0031
Buffer overflows in Yahoo! Messenger 5,0,0,1064 and previous versions allows remote malicious users to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) addview, or (6) addfriend.
Yahoo Messenger 5.0
2 EDB exploits
7.5
CVSSv2
CVE-2002-0032
Yahoo! Messenger 5,0,0,1064 and previous versions allows remote malicious users to execute arbitrary script as other users via the addview parameter of a ymsgr URI.
Yahoo Messenger 5.0
7.5
CVSSv2
CVE-2002-1665
Buffer overflow in Yahoo! Messenger before February 2002 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long set_buddygrp field.
Yahoo Messenger 5.0
7.6
CVSSv2
CVE-2007-3928
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users to execute arbitrary code via a long e-mail address in an address book entry. NOTE: this might overlap CVE-2007-3638.
Yahoo Messenger 8.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »