header-logo
Suggest Exploit
vendor:
Yahoo! Messenger
by:
Unknown
N/A
CVSS
N/A
Remote Crash Exploit
Unknown
CWE
Product Name: Yahoo! Messenger
Affected Version From: Yahoo! Messenger 8.1.0.413
Affected Version To: Yahoo! Messenger 8.1.0.413
Patch Exists: NO
Related CWE: Unknown
CPE: Unknown
Metasploit:
Other Scripts:
Platforms Tested:
2007

Yahoo! Messenger 8.1.0.413 (webcam) Remote Crash Exploit

This exploit allows an attacker to crash Yahoo! Messenger 8.1.0.413 by injecting a compiled DLL when the target accepts an invitation to view the attacker's webcam.

Mitigation:

Unknown
Source

Exploit-DB raw data:

Yahoo! Messenger 8.1.0.413 (webcam) Remote Crash Exploit

1.compile the dll.
2. choose "invite to view my webcam" to a contact id who is online using yahoo! messenger.
3.when the otherside accept the invatation , inject the dll to local yahoo! messenger 8.1.0.413 's process.
4 . the otherside's yahoo! messenger will be crashed.

Exploit-DB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/30500.rar (08292007-expyahoo.rar)

# milw0rm.com [2007-08-29]

Navigation

Suggest Exploit

Services By CQR