CVE-2003-1129

Name of the Vulnerable Software and Affected Versions Yahoo! Audio Conferencing (aka Voice Chat) versions prior to 1.0.0.45

Description The issue is related to a buffer overflow in the ActiveX control, which can be triggered by a URL with a long hostname to Yahoo! Messenger or Yahoo! Chat. This can cause a denial of service and potentially allow remote attackers to execute arbitrary code.

Recommendations For versions prior to 1.0.0.45, update to version 1.0.0.45 or later to resolve the issue. As a temporary workaround, consider restricting access to the ActiveX control until a patch is applied.