Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0320
Buffer overflow in Yahoo! Messenger 5.0 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long (1) message or (2) IMvironment field.
Yahoo Messenger 5.0
NA
CVE-2002-0321
Yahoo! Messenger 5.0 allows remote malicious users to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks.
Yahoo Messenger 5.0
NA
CVE-2002-0322
Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote malicious users to gain privileges of other users via sniffing.
Yahoo Messenger 4.0
NA
CVE-2007-2385
The Yahoo! UI framework exchanges data using JavaScript Object Notation (JSON) without an associated protection scheme, which allows remote malicious users to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and capture...
Yahoo Ui Library
NA
CVE-2009-4171
An ActiveX control in YahooBridgeLib.dll for Yahoo! Messenger 9.0.0.2162, and possibly other 9.0 versions, allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) by calling the RegisterMe method with a long argument.
Yahoo Messenger 9.0.0.2162
2 EDB exploits
NA
CVE-2003-1135
Buffer overflow in Yahoo! Messenger 5.6 allows remote malicious users to cause a denial of service (crash) via a file send request (sendfile) with a large number of "%" (percent) characters after the Yahoo ID.
Yahoo Messenger 5.6
1 EDB exploit
NA
CVE-2008-5490
SQL injection vulnerability in index.php in PHPStore Yahoo Answers allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Phpstore Yahoo Answers
1 EDB exploit
NA
CVE-2013-4700
The Yahoo! Japan Shopping application 1.4 and previous versions for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Yahoo Japan Shopping
NA
CVE-2000-0047
Buffer overflow in Yahoo Pager/Messenger client allows remote malicious users to cause a denial of service via a long URL within a message.
Yahoo Pager 733
NA
CVE-2007-4391
Heap-based buffer overflow in Kakadu kdu_v32m.dll in Yahoo! Messenger 8.1.0.413 allows remote malicious users to cause a denial of service (application crash) via a certain length field in JPEG2000 data, as demonstrated by sending an "invite to view my webcam" request, ...
Yahoo Messenger 8.1.0.413
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »