Stack-based buffer overflow in the YDPCTL.YDPControl.1 (aka Yahoo! Installer Plugin for Widgets) ActiveX control prior to 2007.7.13.3 (20070620) in YDPCTL.dll in Yahoo! Widgets prior to 4.0.5 allows remote malicious users to execute arbitrary code via a long argument to the GetComponentVersion method. NOTE: some of these details are obtained from third party information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
yahoo widgets |