CVSS: 4.3EPSS: 7%CPEs: 1EXPL: 2CVE-2008-0625 – Yahoo! JukeBox MediaGrid - 'AddBitmap()' ActiveX Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-0625
Buffer overflow in the MediaGrid ActiveX control (mediagrid.dll) in Yahoo! Music Jukebox 2.2.2.56 allows remote attackers to execute arbitrary code via a long argument to the AddBitmap method. Desbordamiento de búfer en el control ActiveX MediaGrid (mediagrid.dll) de Yahoo! Music Jukebox 2.2.2.56. Permite a atacantes remotos ejecutar código de su elección a través de argumentos largos al método AddBitmap. • https://www.exploit-db.com/exploits/5052 http://secunia.com/advisories/28757 http://www.kb.cert.org/vuls/id/340860 http://www.securityfocus.com/bid/27578 http://www.securitytracker.com/id?1019298 http://www.vupen.com/english/advisories/2008/0396/references • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.8EPSS: 2%CPEs: 1EXPL: 0CVE-2007-6535
https://notcve.org/view.php?id=CVE-2007-6535
Buffer overflow in the YShortcut ActiveX control in YShortcut.dll 2006.8.15.1 in Yahoo! Toolbar might allow attackers to execute arbitrary code via a long string to the IsTaggedBM method. Desbordamiento de buffer en el control ActiveX YShortcut ( YShortcut.dll 2006.8.15.1 ) de Yahoo! Toolbar. Podría permitir que atacantes ejecuten código arbitrario a través de una cadena larga de texto en el método IsTaggedBM. • http://lists.grok.org.uk/pipermail/full-disclosure/2007-December/059204.html http://www.securityfocus.com/bid/26956 https://exchange.xforce.ibmcloud.com/vulnerabilities/39155 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.8EPSS: 33%CPEs: 1EXPL: 2CVE-2007-6228 – Yahoo! Toolbar 1.4.1 Helper - Class ActiveX Control Remote Buffer Overflow (Denial of Service) (PoC)
https://notcve.org/view.php?id=CVE-2007-6228
Stack-based buffer overflow in the Helper class in the yt.ythelper.2 ActiveX control in Yahoo! Toolbar 1.4.1 allows remote attackers to cause a denial of service (browser crash) via a long argument to the c method. Desbordamiento de búfer basado en pila en la clase Helper en el controlado ActiveX yt.ythelper.2 en Yahoo! Toolbar 1.4.1 permite a atacantes remotos provocar denegación de servicio (caida de navegador) a través de un argumento largo en el método c. • https://www.exploit-db.com/exploits/30832 http://lists.grok.org.uk/pipermail/full-disclosure/2007-November/058725.html http://www.securityfocus.com/bid/26656 https://exchange.xforce.ibmcloud.com/vulnerabilities/38769 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 11%CPEs: 1EXPL: 2CVE-2007-5017 – Yahoo! Messenger 8.1.0.421 - CYFT Object Arbitrary File Download
https://notcve.org/view.php?id=CVE-2007-5017
Absolute path traversal vulnerability in a certain ActiveX control in the CYFT object in ft60.dll in Yahoo! Messenger 8.1.0.421 allows remote attackers to force a download, and create or overwrite arbitrary files via a full pathname in the second argument to the GetFile method. Vulnerabilidad de escalado de rutas absolutas en ciertos controles de ActiveX en el objeto CYFT del ft60.dll del Yahoo! Messenger 8.1.0.421 permite a atacantes remotos forzar una descarga y crear o sobrescribir ficheros de su elección a través de un nombre de ruta completa como segundo argumento del método GetFile. • https://www.exploit-db.com/exploits/4428 http://osvdb.org/38296 http://www.securityfocus.com/bid/25727 http://www.securitytracker.com/id?1018715 http://www.shinnai.altervista.org/exploits/txt/TXT_KJDPaI2IlM5P9PP6N6dI.html https://exchange.xforce.ibmcloud.com/vulnerabilities/36694 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 2CVE-2007-4635 – Yahoo! Messenger 8.1 - File Transfer Denial of Service
https://notcve.org/view.php?id=CVE-2007-4635
Yahoo! Messenger 8.1.0.209 and 8.1.0.402 allows remote attackers to cause a denial of service (application crash) via certain file-transfer packets, possibly involving a buffer overflow, as demonstrated by ym8bug.exe. NOTE: this might be related to CVE-2007-4515. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Yahoo! • https://www.exploit-db.com/exploits/30544 http://www.securityfocus.com/bid/25484 • CWE-20: Improper Input Validation CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •