Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yahoo vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6228
Stack-based buffer overflow in the Helper class in the yt.ythelper.2 ActiveX control in Yahoo! Toolbar 1.4.1 allows remote malicious users to cause a denial of service (browser crash) via a long argument to the c method.
Yahoo Toolbar 1.4.1
1 EDB exploit
NA
CVE-2000-0047
Buffer overflow in Yahoo Pager/Messenger client allows remote malicious users to cause a denial of service via a long URL within a message.
Yahoo Pager 733
NA
CVE-2007-2385
The Yahoo! UI framework exchanges data using JavaScript Object Notation (JSON) without an associated protection scheme, which allows remote malicious users to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and capture...
Yahoo Ui Library
NA
CVE-2008-0623
Stack-based buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! Music Jukebox 2.2.2.056 allows remote malicious users to execute arbitrary code via a long argument to the AddImage method.
Yahoo Music Jukebox 2.2.2.056
4 EDB exploits
NA
CVE-2008-0624
Buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! JukeBox 2.2.2.56 allows remote malicious users to execute arbitrary code via a long argument to the AddButton method, a different vulnerability than CVE-2008-0623.
Yahoo Music Jukebox 2.2.2.56
4 EDB exploits
NA
CVE-2008-0625
Buffer overflow in the MediaGrid ActiveX control (mediagrid.dll) in Yahoo! Music Jukebox 2.2.2.56 allows remote malicious users to execute arbitrary code via a long argument to the AddBitmap method.
Yahoo Music Jukebox 2.2.2.56
1 EDB exploit
NA
CVE-2009-4858
Cross-site scripting (XSS) vulnerability in questiondetail.php in Yahoo Answers Clone allows remote malicious users to inject arbitrary web script or HTML via the questionid parameter.
Turnkeyforms Yahoo-answers-clone -
1 EDB exploit
NA
CVE-2003-1129
Buffer overflow in the Yahoo! Audio Conferencing (aka Voice Chat) ActiveX control prior to 1,0,0,45 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a URL with a long hostname to Yahoo! Messenger or Yahoo! Chat.
Yahoo Audio Conferencing Activex Control 1.0.0.43
1 EDB exploit
NA
CVE-2012-5883
Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.8.0 up to and including 2.9.0, as used in Bugzilla 3.7.x and 4.0.x prior to 4.0.9, 4.1.x and 4.2.x prior to 4.2.4, and 4.3.x and 4.4.x prior to 4.4rc1, allows remote malicious users to inject ...
Yahoo Yui 2.8.1
Mozilla Bugzilla 3.7.2
Mozilla Bugzilla 3.7
Mozilla Bugzilla 4.0.4
Mozilla Bugzilla 4.0.5
Mozilla Bugzilla 4.2.1
Mozilla Bugzilla 4.2.2
Mozilla Bugzilla 4.3.2
Mozilla Bugzilla 4.3.3
Yahoo Yui 2.8.0
Mozilla Bugzilla 3.7.3
Mozilla Bugzilla 3.7.1
Mozilla Bugzilla 4.0
Mozilla Bugzilla 4.0.8
Mozilla Bugzilla 4.0.7
Mozilla Bugzilla 4.1
Mozilla Bugzilla 4.1.3
Mozilla Bugzilla 4.3
Mozilla Bugzilla 4.3.1
Yahoo Yui 2.8.2
Yahoo Yui 2.9.0
Mozilla Bugzilla 4.0.2
NA
CVE-2004-0006
Multiple buffer overflows in Gaim 0.75 and previous versions, and Ultramagnetic prior to 0.81, allow remote malicious users to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web...
Ultramagnetic Ultramagnetic
Rob Flynn Gaim
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »