Lucene search
SAINT CorporationSAINT:8EAA23FC75E2D9528672990C6ADC7583HistoryApr 12, 2007 - 12:00 a.m.
Yahoo Messenger AudioConf ActiveX control buffer overflow
2007-04-1200:00:00
SAINT Corporation
www.saintcorporation.com
16
EPSS
0.672
Percentile
98.0%
Added: 04/12/2007
CVE: CVE-2007-1680
BID: 23291
OSVDB: 34319
Background
Yahoo! Messenger is an instant messaging application. It includes the AudioConf ActiveX control which is provided by **yacscom.dll**.
Problem
A buffer overflow vulnerability in the AudioConf ActiveX control allows command execution when the **createAndJoinConference** method is called with a long **socksHostname** or **hostname** parameter.
Resolution
Download the latest version of Yahoo! Messenger.
References
<http://messenger.yahoo.com/security_update.php?id=031207>
<http://www.zerodayinitiative.com/advisories/ZDI-07-012.html>
<http://www.kb.cert.org/vuls/id/388377>
Limitations
Exploit works with Yahoo! Messenger 8.1.0.195 and requires a user to load the exploit page.
Platforms
Windows
Related
checkpoint_advisories
checkpoint_advisories
Yahoo Messenger AudioConf ActiveX Control Buffer Overflow (CVE-2007-1680)
2010-05-04 00:00:00
saint
saint
Yahoo Messenger AudioConf ActiveX control buffer overflow
2007-04-12 00:00:00
Yahoo Messenger AudioConf ActiveX control buffer overflow
2007-04-12 00:00:00
Yahoo Messenger AudioConf ActiveX control buffer overflow
2007-04-12 00:00:00
securityvulns
securityvulns
Yahoo! Messenger ActiveX buffer overflow
2007-04-04 00:00:00
ZDI-07-012: Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow
2007-04-04 00:00:00
cvelist
cvelist
CVE-2007-1680
2007-04-06 01:00:00
prion
prion
Stack overflow
2007-04-06 01:19:00
nvd
nvd
CVE-2007-1680
2007-04-06 01:19:00
cert
cert
Yahoo! Messenger AudioConf ActiveX Control buffer overflow vulnerability
2007-04-09 00:00:00
nessus
nessus
zdi
zdi
Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow Vulnerability
2007-04-03 00:00:00
cve
cve
CVE-2007-1680
2007-04-06 01:19:00