Описание
Buffer overflow in the Yahoo! Webcam Upload ActiveX control in ywcupl.dll 2.0.1.4 for Yahoo! Messenger 8.1.0.249 allows remote attackers to execute arbitrary code via a long server property value to the send method. NOTE: some of these details are obtained from third party information.
Ссылки
- Exploit
- Patch
- Vendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- US Government Resource
- Exploit
- Exploit
- Patch
- Vendor Advisory
- Vendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:yahoo:messenger:2.0.1.4:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0.0.863:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0_2005.1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.1.0.249:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.6922
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
почти 4 года назад
Buffer overflow in the Yahoo! Webcam Upload ActiveX control in ywcupl.dll 2.0.1.4 for Yahoo! Messenger 8.1.0.249 allows remote attackers to execute arbitrary code via a long server property value to the send method. NOTE: some of these details are obtained from third party information.
EPSS
Процентиль: 99%
0.6922
Средний
9.3 Critical
CVSS2
Дефекты
CWE-119