Page 7 of 34 results (0.007 seconds)

CVSS: 4.6EPSS: 1%CPEs: 1EXPL: 2

Buffer overflows in Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) addview, or (6) addfriend. • https://www.exploit-db.com/exploits/45 https://www.exploit-db.com/exploits/21484 http://online.securityfocus.com/archive/1/274223 http://www.cert.org/advisories/CA-2002-16.html http://www.kb.cert.org/vuls/id/137115 http://www.securityfocus.com/bid/4837 •

CVSS: 7.5EPSS: 15%CPEs: 1EXPL: 0

Buffer overflow in Yahoo! Messenger 5.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) message or (2) IMvironment field. • http://marc.info/?l=bugtraq&m=101439616623230&w=2 http://www.cert.org/advisories/CA-2002-16.html http://www.iss.net/security_center/static/8264.php http://www.iss.net/security_center/static/8265.php http://www.kb.cert.org/vuls/id/419419 http://www.kb.cert.org/vuls/id/887319 http://www.securityfocus.com/bid/4162 http://www.securityfocus.com/bid/4163 •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

Yahoo! Messenger 4.0 sends user passwords in cleartext, which could allow remote attackers to gain privileges of other users via sniffing. • http://marc.info/?l=bugtraq&m=101466489113920&w=2 http://marc.info/?l=bugtraq&m=101467298107635&w=2 http://www.securityfocus.com/bid/4173 •

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

Yahoo! Messenger 5.0 allows remote attackers to spoof other users by modifying the username and using the spoofed username for social engineering or denial of service (flooding) attacks. • http://marc.info/?l=bugtraq&m=101439616623230&w=2 http://www.cert.org/advisories/CA-2002-16.html http://www.iss.net/security_center/static/8267.php http://www.kb.cert.org/vuls/id/952875 http://www.securityfocus.com/bid/4164 •