PT-2007-5148 · Yahoo · Yahoo! Messenger
Rajesh Sethumadhavan
·
Publicado
2007-07-21
·
Atualizado
2017-07-29
·
CVE-2007-3928
CVSS v2.0
7.6
Alta
| Vetor | AV:N/AC:H/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
Yahoo! Messenger version 8.1
Description:
A buffer overflow issue allows user-assisted remote authenticated users to execute arbitrary code via a long e-mail address in an address book entry.
Recommendations:
For Yahoo! Messenger version 8.1, avoid using long e-mail addresses in address book entries until a fix is available. As a temporary workaround, consider restricting the length of e-mail addresses in address book entries to prevent potential exploitation.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Yahoo! Messenger