This script is Copyright (C) 2006-2017 Tenable Network Security, Inc.
The remote Windows host has an ActiveX control that is affected by a
The remote host contains a version of the 'YMailAttach' ActiveX
control included with Yahoo! Messenger.
The version of this ActiveX control on the remote host reportedly has
an unspecified buffer overflow. If an attacker can trick a user on the
affected host into visiting a specially crafted web page, he may be
able to leverage this issue to execute arbitrary code on the host
subject to the user's privileges.
See also :
Update to the latest version of Yahoo! Messenger.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false