Yahoo! Messenger File Extension Spoofing Vulnerability

vendor:

Yahoo! Messenger

by:

SecurityFocus

7.5

CVSS

HIGH

File Extension Spoofing

CWE

Product Name: Yahoo! Messenger

Affected Version From: 8.0.0.863

Affected Version To: 8.0.0.863

Patch Exists: YES

Related CWE: N/A

CPE: a:yahoo:messenger

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2006

Yahoo! Messenger File Extension Spoofing Vulnerability

A vulnerability in Yahoo! Messenger allows remote attackers to spoof file extensions. This issue is due to a design error. An attacker may leverage this issue to spoof downloaded filenames to unsuspecting users. This issue may lead to a compromise of the target computer as well as other consequences.

Mitigation:

Upgrade to the latest version of Yahoo! Messenger.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/19353/info

A vulnerability in Yahoo! Messenger allows remote attackers to spoof file extensions. This issue is due to a design error. 

An attacker may leverage this issue to spoof downloaded filenames to unsuspecting users. This issue may lead to a compromise of the target computer as well as other consequences. 

Yahoo! Messenger version 8.0.0.863 is reportedly affected; earlier versions may be affected as well.

Sample filenames and extensions have been provided:

example: Annakournikova and her friends.jpg~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@.exe Trojan.txt~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@~@.exe Info.txt~@~@~@~@~@~@~@~@~@~@~@~@~@~@.exe