Yahoo Messenger Unspecified Bugs Let Remote Users Execute Arbitrary Code
|
SecurityTracker Alert ID: 1018203 |
SecurityTracker URL: http://securitytracker.com/id/1018203
|
CVE Reference:
CVE-2007-3147, CVE-2007-3148
(Links to External Site)
|
Updated: May 10 2008
|
Original Entry Date: Jun 7 2007
|
Impact:
Execution of arbitrary code via network, User access via network
|
|
Version(s): 8.x
|
Description:
A vulnerability was reported in Yahoo Messenger. A remote user can cause arbitrary code to be executed on the target user's system.
Multiple flaws exist and can be exploited with "minimal user interaction."
The vendor was notified on June 5, 2007.
eEye Digital Security discovered these vulnerabilities.
The original advisory is available at:
http://research.eeye.com/html/advisories/upcoming/20070605.html
|
Impact:
A remote user can cause arbitrary code to be executed on the target user's system.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: www.yahoo.com/ (Links to External Site)
|
Cause:
Not specified
|
Underlying OS: Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
|
[Original Message Not Available for Viewing]
|
|