Buffer overflow in the YMMAPI.YMailAttach ActiveX control (ymmapi.dll) before 2005.1.1.4 in Yahoo! Messenger allows remote attackers to execute arbitrary code via a crafted HTML document. NOTE: some details were obtained from third party information.
References
Link | Resource |
---|---|
http://messenger.yahoo.com/security_update.php?id=120806 | Patch Vendor Advisory |
http://secunia.com/advisories/23401 | Patch Vendor Advisory |
http://www.kb.cert.org/vuls/id/901852 | Patch US Government Resource |
http://www.securityfocus.com/bid/21607 | Patch |
http://securitytracker.com/id?1017387 | Patch |
http://www.vupen.com/english/advisories/2006/5016 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2006-12-15 14:28
Updated : 2011-03-07 18:46
NVD link : CVE-2006-6603
Mitre link : CVE-2006-6603
JSON object : View
CWE
Products Affected
yahoo
- messenger