CVSS: 7.5EPSS: 8%CPEs: 1EXPL: 0CVE-2004-0043
https://notcve.org/view.php?id=CVE-2004-0043
Buffer overflow in Yahoo Instant Messenger 5.6.0.1351 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long filename in the download feature. Desbordamiento de búfer en Yahoo Instant Messenger 5.6.0.1351 y anteriores permite que atacantes remotos provoquen una denegación de servicio (caída) y posiblemente ejecuten código arbitrario mediante un nombre de fichero largo en la opción de descarga. • http://lists.grok.org.uk/pipermail/full-disclosure/2004-January/015334.html http://marc.info/?l=bugtraq&m=107357996802255&w=2 http://secunia.com/advisories/10573 http://www.osvdb.org/3437 http://www.securityfocus.com/bid/9383 http://www.securitytracker.com/id?1008651 https://exchange.xforce.ibmcloud.com/vulnerabilities/14171 •
CVSS: 2.6EPSS: 0%CPEs: 1EXPL: 3CVE-2003-1135 – Yahoo! Messenger 5.6 - File Transfer Buffer Overrun
https://notcve.org/view.php?id=CVE-2003-1135
Buffer overflow in Yahoo! Messenger 5.6 allows remote attackers to cause a denial of service (crash) via a file send request (sendfile) with a large number of "%" (percent) characters after the Yahoo ID. • https://www.exploit-db.com/exploits/23293 http://www.securityfocus.com/archive/1/342472 http://www.securityfocus.com/bid/8894 •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1664
https://notcve.org/view.php?id=CVE-2002-1664
Yahoo! Messenger before February 2002 allows remote attackers to add arbitrary users to another user's buddy list and possibly obtain sensitive information. • http://marc.info/?l=bugtraq&m=101439616623230&w=2 http://www.cert.org/advisories/CA-2002-16.html http://www.kb.cert.org/vuls/id/393195 •
CVSS: 5.8EPSS: 0%CPEs: 3EXPL: 0CVE-2002-2361
https://notcve.org/view.php?id=CVE-2002-2361
The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing. • http://cert.uni-stuttgart.de/archive/bugtraq/2002/08/msg00384.html http://www.iss.net/security_center/static/9984.php http://www.securityfocus.com/bid/5579 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 0CVE-2002-1665
https://notcve.org/view.php?id=CVE-2002-1665
Buffer overflow in Yahoo! Messenger before February 2002 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long set_buddygrp field. • http://marc.info/?l=bugtraq&m=101439616623230&w=2 http://www.cert.org/advisories/CA-2002-16.html http://www.kb.cert.org/vuls/id/755755 •