Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo vulnerabilities and exploits
(subscribe to this query)
2.6
CVSSv2
CVE-2003-1135
Buffer overflow in Yahoo! Messenger 5.6 allows remote malicious users to cause a denial of service (crash) via a file send request (sendfile) with a large number of "%" (percent) characters after the Yahoo ID.
Yahoo Messenger 5.6
1 EDB exploit
6
CVSSv2
CVE-2007-3638
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users, who are listed in an address book, to execute arbitrary code via unspecified vectors, aka ZD-00000005. NOTE: this information is based upon a vague advisory by a vulnerability information sal...
Yahoo Messenger 8.1
1 EDB exploit
7.6
CVSSv2
CVE-2007-3928
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users to execute arbitrary code via a long e-mail address in an address book entry. NOTE: this might overlap CVE-2007-3638.
Yahoo Messenger 8.1
4.3
CVSSv2
CVE-2009-4858
Cross-site scripting (XSS) vulnerability in questiondetail.php in Yahoo Answers Clone allows remote malicious users to inject arbitrary web script or HTML via the questionid parameter.
Turnkeyforms Yahoo-answers-clone -
1 EDB exploit
4.3
CVSSv2
CVE-2008-0623
Stack-based buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! Music Jukebox 2.2.2.056 allows remote malicious users to execute arbitrary code via a long argument to the AddImage method.
Yahoo Music Jukebox 2.2.2.056
4 EDB exploits
4.3
CVSSv2
CVE-2008-0625
Buffer overflow in the MediaGrid ActiveX control (mediagrid.dll) in Yahoo! Music Jukebox 2.2.2.56 allows remote malicious users to execute arbitrary code via a long argument to the AddBitmap method.
Yahoo Music Jukebox 2.2.2.56
1 EDB exploit
4.3
CVSSv2
CVE-2008-0624
Buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! JukeBox 2.2.2.56 allows remote malicious users to execute arbitrary code via a long argument to the AddButton method, a different vulnerability than CVE-2008-0623.
Yahoo Music Jukebox 2.2.2.56
4 EDB exploits
2.6
CVSSv2
CVE-2003-1129
Buffer overflow in the Yahoo! Audio Conferencing (aka Voice Chat) ActiveX control prior to 1,0,0,45 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a URL with a long hostname to Yahoo! Messenger or Yahoo! Chat.
Yahoo Audio Conferencing Activex Control 1.0.0.43
1 EDB exploit
4.3
CVSSv2
CVE-2012-5883
Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.8.0 up to and including 2.9.0, as used in Bugzilla 3.7.x and 4.0.x prior to 4.0.9, 4.1.x and 4.2.x prior to 4.2.4, and 4.3.x and 4.4.x prior to 4.4rc1, allows remote malicious users to inject ...
Yahoo Yui 2.8.1
Mozilla Bugzilla 3.7.2
Mozilla Bugzilla 3.7
Mozilla Bugzilla 4.0.4
Mozilla Bugzilla 4.0.5
Mozilla Bugzilla 4.2.1
Mozilla Bugzilla 4.2.2
Mozilla Bugzilla 4.3.2
Mozilla Bugzilla 4.3.3
Yahoo Yui 2.8.0
Mozilla Bugzilla 3.7.3
Mozilla Bugzilla 3.7.1
Mozilla Bugzilla 4.0
Mozilla Bugzilla 4.0.8
Mozilla Bugzilla 4.0.7
Mozilla Bugzilla 4.1
Mozilla Bugzilla 4.1.3
Mozilla Bugzilla 4.3
Mozilla Bugzilla 4.3.1
Yahoo Yui 2.8.2
Yahoo Yui 2.9.0
Mozilla Bugzilla 4.0.2
7.5
CVSSv2
CVE-2004-0006
Multiple buffer overflows in Gaim 0.75 and previous versions, and Ultramagnetic prior to 0.81, allow remote malicious users to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web...
Ultramagnetic Ultramagnetic
Rob Flynn Gaim
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »