header-logo
Suggest Exploit
vendor:
Yahoo! Assistant
by:
SecurityFocus
9.3
CVSS
HIGH
Memory Corruption
119
CWE
Product Name: Yahoo! Assistant
Affected Version From: 3.6
Affected Version To: 3.6
Patch Exists: NO
Related CWE: N/A
CPE: 2283BB66-A15D-4AC8-BA72-9C8C9F5A1691
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Yahoo! Assistant ‘yNotifier.dll’ ActiveX Control Memory Corruption Vulnerability

Yahoo! Assistant 'yNotifier.dll' ActiveX control is prone to a memory-corruption vulnerability. Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application using the affected ActiveX control. Failed exploit attempts will likely crash the application.

Mitigation:

Users should avoid visiting untrusted websites and should disable the ActiveX control in the Internet Options control panel.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/29065/info

Yahoo! Assistant 'yNotifier.dll' ActiveX control is prone to a memory-corruption vulnerability.

Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the application using the affected ActiveX control. Failed exploit attempts will likely crash the application.

The issue affects Yahoo! Assistant 3.6 and prior versions. 

<object classid='clsid:2283BB66-A15D-4AC8-BA72-9C8C9F5A1691'>

Navigation

Suggest Exploit

Services By CQR