Lucene search
HistoryDec 15, 2006 - 10:28 p.m.
CVE-2006-6603
cve-2006-6603
buffer overflow
yahoo! messenger
activex control
remote code execution
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
High
0.079 Low
EPSS
Percentile
94.3%
Buffer overflow in the YMMAPI.YMailAttach ActiveX control (ymmapi.dll) before 2005.1.1.4 in Yahoo! Messenger allows remote attackers to execute arbitrary code via a crafted HTML document. NOTE: some details were obtained from third party information.
Affected configurations
Node
yahoomessengerRange≤8.0
ORyahoomessengerMatch5.0
ORyahoomessengerMatch5.5
ORyahoomessengerMatch5.6
ORyahoomessengerMatch6.0
ORyahoomessengerMatch7.0
ORyahoomessengerMatch7.5
Related
cert
cert
Yahoo Messenger YMailAttach ActiveX control buffer overflow
2006-12-15 00:00:00
nvd
nvd
CVE-2006-6603
2006-12-15 22:28:00
nessus
nessus
Yahoo! Messenger YMMAPI.YMailAttach ActiveX (ymmapi.dll) Overflow
2006-12-15 00:00:00
cvelist
cvelist
CVE-2006-6603
2006-12-15 22:00:00
checkpoint_advisories
checkpoint_advisories
Yahoo Messenger YMailAttach ActiveX Control Buffer Overflow (CVE-2006-6603)
2010-02-22 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.7 High
AI Score
Confidence
High
0.079 Low
EPSS
Percentile
94.3%
Related for CVE-2006-6603