NEWS / WINDOWS

Crucial Flaws Discovered in Yahoo! IM

08 Jun, 2007, 4:40 pm IST | by Priyanka Pradhan | Windows

Researchers at eEye Digital Security are reporting multiple vulnerabilities in Yahoo! Messenger, which can be used to remotely execute code. These vulnerabilities have reportedly come from Active X controls, installed in a computer.

A Yahoo! spokesperson confirmed the company is looking into a buffer overflow issue in an Active X control. The company also said the vulnerabilities, which have obtained a rating of "high" by eEye Digital Security, were reported to Yahoo! on June 5 but are not known to have been exploited. Version 8.x of Yahoo! instant messaging (IM) client is at risk.

In addition, officials from security research firm Secunia say, a boundary error within the Yahoo! Webcam Upload (ywcupl.dll) ActiveX control can be exploited to cause a stack-based buffer overflow by assigning an overly long string to the 'Server' property and then calling the 'Send()' or ' Receive ()' method.

A study by Akonix Systems in San Diego (May 2007), a provider of instant messaging security and compliance products, uncovered 170 IM threats—an increase of 73 percent when compared to the number the company found between January and May of 2006.

Read more here.

Tags: Yahoo! Messenger

RELATED STORIES

Yahoo received inquiries from many parties - memo

Yahoo received inquiries from many parties - memo

Yahoo Inc. has received inquiries from multiple parties about "potential options," but the struggling Web company expects to take months to decide its future, the company's co-founders and Chairman said in a letter to employees on Friday.

MAXX Adds Full Touch Mobile MT150 to its Scope

Exploring App Stores: Social Networking Apps for the iPad

Yahoo! Accused of Invading Users' Privacy

Video Calling Using Yahoo! Messenger on iPad 2

CeBIT 2007: Logitech Offers Webcams for Notebooks

Yahoo! Messenger Now Inside Mail

How To Install Yahoo Messenger

15 Nov, 2008, 11:42 am IST

How To Install Yahoo Messenger

How To Open Two Yahoo! Messenger

18 Aug, 2008, 11:34 am IST

How To Open Two Yahoo! Messenger

Yahoo Messenger 10 Beta

26 Aug, 2009, 01:41 am IST

Yahoo Messenger 10 Beta

Yahoo Messenger for Windows Vista

09 Feb, 2007, 09:26 am IST

Yahoo Messenger for Windows Vista

 

OPINIONS

Roydon Cerejo

Google’s latest iteration of Android, Ice Cream Sandwich or Android 4.0 is a major overhaul from G...

MORE OPINIONS

Leaked Images, Availability, Pricing,
Specs, Pre-order

features

Top 5 free all-in-one messengers for Windows

Top 5 free all-in-one messengers for Windows

The number of instant messaging services have exploded, since the first...

By Rossi Fernandes

Project Darpan: Digitizing Indian local languages

Project Darpan: Digitizing Indian local languages

Compared to the relatively slow adoption rate of the traditional PC, that...

By Naina Khedekar

Top 10 tips for Internet Explorer 9

Top 10 tips for Internet Explorer 9

Microsoft’s browser Internet Explorer has been around a while and things

By Tech2

MORE FEATURES

Skullcandy Aviator Review

Aashish Shrestha

Mon May 21, 19:43:50

Sony Ericsson Live with Walkman Review

Tauheed Ashraf Sheikh

Mon May 21, 17:50:59

MORE DISCUSSIONS