CVSS: 4.3EPSS: 23%CPEs: 1EXPL: 5CVE-2008-0623 – Yahoo! Music Jukebox 2.2 - 'AddImage()' ActiveX Remote Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2008-0623
Stack-based buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! Music Jukebox 2.2.2.056 allows remote attackers to execute arbitrary code via a long argument to the AddImage method. Desbordamiento de búfer basado en pila en el control YMP Datagrid ActiveX (datagrid.dll) de Yahoo! Music Jukebox 2.2.2.056. Permite a atacantes remotosd ejecutar código de su elección a través de argumentos largos al método AddImage method. • https://www.exploit-db.com/exploits/5043 https://www.exploit-db.com/exploits/5051 https://www.exploit-db.com/exploits/5046 https://www.exploit-db.com/exploits/5048 http://secunia.com/advisories/28757 http://www.kb.cert.org/vuls/id/101676 http://www.securityfocus.com/bid/27590 http://www.securitytracker.com/id?1019301 http://www.vupen.com/english/advisories/2008/0396/references • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 8%CPEs: 1EXPL: 4CVE-2008-0624 – Yahoo! Music Jukebox 2.2 - 'AddImage()' ActiveX Remote Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2008-0624
Buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! JukeBox 2.2.2.56 allows remote attackers to execute arbitrary code via a long argument to the AddButton method, a different vulnerability than CVE-2008-0623. Un desbordamiento de búfer en el control ActiveX YMP Datagrid (datagrid.dll) en Yahoo! JukeBox versión 2.2.2.56, permite a los atacantes remotos ejecutar código arbitrario por medio de un argumento largo para el método AddButton, una vulnerabilidad diferente de CVE-2008-0623. • https://www.exploit-db.com/exploits/5043 https://www.exploit-db.com/exploits/5051 https://www.exploit-db.com/exploits/5046 https://www.exploit-db.com/exploits/5048 http://secunia.com/advisories/28757 http://www.kb.cert.org/vuls/id/101676 http://www.securityfocus.com/bid/27579 http://www.vupen.com/english/advisories/2008/0396/references • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 7%CPEs: 1EXPL: 2CVE-2008-0625 – Yahoo! JukeBox MediaGrid - 'AddBitmap()' ActiveX Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-0625
Buffer overflow in the MediaGrid ActiveX control (mediagrid.dll) in Yahoo! Music Jukebox 2.2.2.56 allows remote attackers to execute arbitrary code via a long argument to the AddBitmap method. Desbordamiento de búfer en el control ActiveX MediaGrid (mediagrid.dll) de Yahoo! Music Jukebox 2.2.2.56. Permite a atacantes remotos ejecutar código de su elección a través de argumentos largos al método AddBitmap. • https://www.exploit-db.com/exploits/5052 http://secunia.com/advisories/28757 http://www.kb.cert.org/vuls/id/340860 http://www.securityfocus.com/bid/27578 http://www.securitytracker.com/id?1019298 http://www.vupen.com/english/advisories/2008/0396/references • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •