[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2012-0268

Date: (C)2012-01-19   (M)2016-02-06
 
CVSS Score: 5.1Access Vector: NETWORK
Exploitability Subscore: 4.9Access Complexity: HIGH
Impact Subscore: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL











Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.

Reference:
SECUNIA-47041

CPE    83
cpe:/a:yahoo:messenger:5.0.1232
cpe:/a:yahoo:messenger:5.6.0.1347
cpe:/a:yahoo:messenger:6.0.0.1643
cpe:/a:yahoo:messenger:8.1.0.402
...
CWE    1
CWE-189

© 2013 SecPod Technologies