CVE-2012-0268

Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.

CVSS v2.0 5.1 MEDIUM

5.1^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:H/Au:N/C:P/I:P/A:P

Exploitability : 4.9 / Impact : 6.4

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/47041	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:yahoo:messenger:7.0:::::::*
	cpe:2.3:a:yahoo:messenger:5.6.0.1358:::::::*
	cpe:2.3:a:yahoo:messenger:7.5.0.814:::::::*
	cpe:2.3:a:yahoo:messenger:5.6.0.1356:::::::*
	cpe:2.3:a:yahoo:messenger:8.1.0.239:::::::*
	cpe:2.3:a:yahoo:messenger:5.0.1065:::::::*
	cpe:2.3:a:yahoo:messenger:5.5.1249:::::::*
	cpe:2.3:a:yahoo:messenger:8.1.0.413:::::::*
	cpe:2.3:a:yahoo:messenger:10.0.0.1241:::::::*
	cpe:2.3:a:yahoo:messenger:10.0.0.1102:::::::*
	cpe:2.3:a:yahoo:messenger:10.0.0.542:beta::::::
	cpe:2.3:a:yahoo:messenger:10.0.0.525:beta::::::
	cpe:2.3:a:yahoo:messenger:8.1.0.419:::::::*
	cpe:2.3:a:yahoo:messenger:1.0:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.2162:::::::*
	cpe:2.3:a:yahoo:messenger:8.0.1:::::::*
	cpe:2.3:a:yahoo:messenger:8.0:::::::*
	cpe:2.3:a:yahoo:messenger:5.6.0.1347:::::::*
	cpe:2.3:a:yahoo:messenger:2.0.1.4:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.797:beta::::::
	cpe:2.3:a:yahoo:messenger:9.0.0.907:beta::::::
	cpe:2.3:a:yahoo:messenger::::::::
	cpe:2.3:a:yahoo:messenger:11.0.0.1751:::::::*
	cpe:2.3:a:yahoo:messenger:11.0.0.2009:::::::*
	cpe:2.3:a:yahoo:messenger:3.0.1:::::::*
	cpe:2.3:a:yahoo:messenger:6.0.0.1921:::::::*
	cpe:2.3:a:yahoo:messenger:8.1.0.402:::::::*
	cpe:2.3:a:yahoo:messenger:3.0:::::::*
	cpe:2.3:a:yahoo:messenger:11.0.0.2014:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.2133:::::::*
	cpe:2.3:a:yahoo:messenger:4.0:::::::*
	cpe:2.3:a:yahoo:messenger:8.1.0.209:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.922:beta::::::
	cpe:2.3:a:yahoo:messenger:9.0.0.2123:::::::*
	cpe:2.3:a:yahoo:messenger:5.6:::::::*
	cpe:2.3:a:yahoo:messenger:5.6.0.1355:::::::*
	cpe:2.3:a:yahoo:messenger:6.1:::::::*
	cpe:2.3:a:yahoo:messenger:8.1.0.249:::::::*
	cpe:2.3:a:yahoo:messenger:7.0.0.437:::::::*
	cpe:2.3:a:yahoo:messenger:8.0.0.701:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.2160:::::::*
	cpe:2.3:a:yahoo:messenger:6.0.0.1750:::::::*
	cpe:2.3:a:yahoo:messenger:10.0.0.1270:::::::*
	cpe:2.3:a:yahoo:messenger:10.0.0.1264:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.2128:::::::*
	cpe:2.3:a:yahoo:messenger:7.5:::::::*
	cpe:2.3:a:yahoo:messenger:8.1.0.195:::::::*
	cpe:2.3:a:yahoo:messenger:8.0.0.505:::::::*
	cpe:2.3:a:yahoo:messenger:8.0.0.508:::::::*
	cpe:2.3:a:yahoo:messenger:10.0.0.1258:::::::*
	cpe:2.3:a:yahoo:messenger:3.5:::::::*
	cpe:2.3:a:yahoo:messenger:10.0.0.1267:::::::*
	cpe:2.3:a:yahoo:messenger:5.0.1232:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.2112:::::::*
	cpe:2.3:a:yahoo:messenger:0.99.17-1:::::::*
	cpe:2.3:a:yahoo:messenger:8.1:::::::*
	cpe:2.3:a:yahoo:messenger:5.5:::::::*
	cpe:2.3:a:yahoo:messenger:6.0.0.1643:::::::*
	cpe:2.3:a:yahoo:messenger:7.0.438:::::::*
	cpe:2.3:a:yahoo:messenger:5.0:::::::*
	cpe:2.3:a:yahoo:messenger:5.6.0.1351:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.2152:::::::*
	cpe:2.3:a:yahoo:messenger:8.0_2005.1.1.4:::::::*
	cpe:2.3:a:yahoo:messenger:9.0.0.2018:::::::*
cpe:2.3:a:yahoo:messenger:8.1.0.421:::::::*
cpe:2.3:a:yahoo:messenger:9.0.0.2161:::::::*
cpe:2.3:a:yahoo:messenger:9.0.0.2034:::::::*
cpe:2.3:a:yahoo:messenger:8.0.0.716:::::::*
cpe:2.3:a:yahoo:messenger:6.0:::::::*
cpe:2.3:a:yahoo:messenger:5.0.1046:::::::*
cpe:2.3:a:yahoo:messenger:3.0.1:beta-35554::::::
cpe:2.3:a:yahoo:messenger:9.0.0.2136:::::::*
cpe:2.3:a:yahoo:messenger:8.1.0.401:::::::*
cpe:2.3:a:yahoo:messenger:9.0.0.1912:::::::*
cpe:2.3:a:yahoo:messenger:10.0.0.331:pre-alpha::::::
cpe:2.3:a:yahoo:messenger:8.0.0.863:::::::*
cpe:2.3:a:yahoo:messenger:9.0.0.1389:beta::::::
cpe:2.3:a:yahoo:messenger:8.1.0.244:::::::*
cpe:2.3:a:yahoo:messenger:8.1.0.416:::::::*
cpe:2.3:a:yahoo:messenger:1.0.4:::::::*
cpe:2.3:a:yahoo:messenger:4.1:::::::*
cpe:2.3:a:yahoo:messenger:1.0.6:::::::*
cpe:2.3:a:yahoo:messenger:7.0.0.426:::::::*

Information

Published : 2012-01-19 07:55

Updated : 2012-01-22 21:00

NVD link : CVE-2012-0268

Mitre link : CVE-2012-0268

JSON object : View

CWE

CWE-189

Numeric Errors

Products Affected

yahoo

messenger

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://secunia.com/advisories/47041", "name": "47041", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-189"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2012-0268", "ASSIGNER": "PSIRT-CNA@flexerasoftware.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2012-01-19T15:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:yahoo:messenger:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.6.0.1358:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:7.5.0.814:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.6.0.1356:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.239:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.0.1065:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.5.1249:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.413:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.1241:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.1102:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.542:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.525:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.419:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2162:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.6.0.1347:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:2.0.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.797:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.907:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "11.5.0.152"}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:11.0.0.1751:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:11.0.0.2009:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:3.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:6.0.0.1921:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.402:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:11.0.0.2014:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2133:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.209:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.922:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2123:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.6.0.1355:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.249:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:7.0.0.437:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0.0.701:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2160:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:6.0.0.1750:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.1270:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.1264:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2128:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:7.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.195:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0.0.505:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0.0.508:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.1258:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.1267:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.0.1232:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2112:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:0.99.17-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:6.0.0.1643:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:7.0.438:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.6.0.1351:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2152:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0_2005.1.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2018:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.421:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2161:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2034:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0.0.716:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:5.0.1046:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:3.0.1:beta-35554:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.2136:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.401:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.1912:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:10.0.0.331:pre-alpha:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.0.0.863:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:9.0.0.1389:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.244:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:8.1.0.416:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:1.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:1.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:yahoo:messenger:7.0.0.426:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2012-01-23T05:00Z"}

5.1 /10