Yahoo! Messenger < 126.96.36.1996 Multiple Vulnerabilities
High Nessus Plugin ID 25932
SynopsisThe instant messaging application on the remote Windows host is affected by multiple vulnerabilities.
DescriptionThe version of Yahoo! Messenger installed on the remote host is reportedly affected by a buffer overflow as well as a denial of service vulnerability, both involving its video chat feature.
If an attacker can trick a user on the affected host into accepting a webcam invitation, these issues could be leveraged to crash the affected application or execute arbitrary code on the host subject to the user's privileges.
SolutionUpgrade to Yahoo! Messenger version 188.8.131.526 or later.