Exploit Code Out For Yahoo IM Flaws

By BetaNews Staff
Published 18 years ago

UPDATE: Yahoo has posted a fix for the security flaws with the release of Yahoo Messenger 8.1.0.401 Code for two exploits in Yahoo Messenger first disclosed earlier this week by security firm eEye appeared on the Full Disclosure mailing list on Thursday. At the current time, the only fix is to set the 'kill bits' in the ActiveX controls responsible for the vulnerabilities, although it requires a system registry edit.

The first set of code takes advantage of buffer overflow issues within the Webcam ActiveX component, while the other causes a buffer overflow in the ywcvwr.dll viewer. The issues affect both Yahoo Messenger 8.0 and 8.1 running on Windows.

Tags:

4 Comments

4 Responses to Exploit Code Out For Yahoo IM Flaws

Got News? Contact Us

Exploit Code Out For Yahoo IM Flaws

4 Responses to Exploit Code Out For Yahoo IM Flaws

Recent Headlines

EU fines Google €2.95 billion over adtech abuses

Poor data quality is hindering AI adoption

Timekettle W4 AI Interpreter Earbuds offer tourists near real-time translation on the go

Brits warned of scams ahead of emergency alert test

Scrolling support for Google Translate arrives in Circle to Search

Rethinking AppSec for the AI era [Q&A]

Facebook Pokes are back – and your guess is as good as ours

Most Commented Stories

Extended Windows 10 support means ditching your local account for a Microsoft Account

This updated Windows 11 clone is Linux underneath and makes your old PC run faster -- get it now

Forget Windows 11, Windows 12.2 is the 'next evolution' of Microsoft's OS

Why using a VPN is becoming more important than ever

Microsoft is rolling out Windows 11 25H2

Microsoft slowly rolls out a button allowing Windows 10 users to refuse Windows 11

High Court rejects Wikipedia challenge to UK online safety rules

Age verification laws are killing web traffic