Lucene search
HistoryFeb 06, 2008 - 9:00 p.m.
CVE-2008-0624
cve-2008-0624
buffer overflow
ymp datagrid
yahoo jukebox
remote code execution
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.8 High
AI Score
Confidence
Low
0.204 Low
EPSS
Percentile
96.4%
Buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! JukeBox 2.2.2.56 allows remote attackers to execute arbitrary code via a long argument to the AddButton method, a different vulnerability than CVE-2008-0623.
Affected configurations
Node
yahoomusic_jukeboxMatch2.2.2.56
| CPE | Name | Operator | Version |
|---|---|---|---|
| yahoo:music_jukebox | yahoo music jukebox | eq | 2.2.2.56 |
Related
cert
cert
Yahoo! Music Jukebox YMP Datagrid ActiveX control stack buffer overflows
2008-02-05 00:00:00
prion
prion
Buffer overflow
2008-02-06 21:00:00
Stack overflow
2008-02-06 21:00:00
cvelist
cvelist
CVE-2008-0624
2008-02-06 20:00:00
CVE-2008-0623
2008-02-06 20:00:00
nvd
nvd
CVE-2008-0624
2008-02-06 21:00:00
CVE-2008-0623
2008-02-06 21:00:00
nessus
nessus
Yahoo! Music Jukebox ActiveX Controls Buffer Overflows
2008-02-07 00:00:00
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Yahoo! Music Jukebox AddImageๅฝๆฐActiveX่ฟ็จๆ ๆบขๅบๆผๆด
2008-02-26 00:00:00
cve
cve
CVE-2008-0623
2008-02-06 21:00:00
kaspersky
kaspersky
KLA10407 ACE vulnerability in Yahoo! Music Jukebox
2008-02-06 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
7.8 High
AI Score
Confidence
Low
0.204 Low
EPSS
Percentile
96.4%
Related for CVE-2008-0624