From: Secunia Security Advisories (sec-advsecunia.com)
Date: Thu Jan 08 2004 - 09:52:26 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Yahoo! Messenger Filename Buffer Overflow Vulnerability

SECUNIA ADVISORY ID:
SA10573

VERIFY ADVISORY:
http://www.secunia.com/advisories/10573/

CRITICAL:
Highly critical

IMPACT:
System access

WHERE:
From remote

SOFTWARE:
Yahoo! Messenger 5.x

DESCRIPTION:
Tri Huynh has reported a vulnerability in Yahoo! Messenger, allowing
malicious people to compromise a user's system.

The vulnerability is caused due to a boundary error when handling the
filename parameter. An overly long, maliciously crafted filename
causes a buffer overflow, which potentially allows execution of
arbitrary code with the privileges of the current user.

The vulnerability has been reported in version 5.6.0.1351 and prior.

SOLUTION:
The vendor has reportedly fixed the vulnerability silently in version
5.6.0.1358.

NOTE: It is necessary to manually delete any old version and install
version 5.6.0.1358, because no update function is available.

PROVIDED AND/OR DISCOVERED BY:
Tri Huynh, SentryUnion.

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://www.secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://www.secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]