Yahoo! Messenger ymsgr Protocol Multiple Function Overflow
High Nessus Network Monitor Plugin ID 1261
SynopsisThe remote host is vulnerable to a buffer overflow
DescriptionThe remote host is running a version of Yahoo Instant Messenger that is vulnerable to multiple buffer overflows in the code that processes URLs of the type "ymsgr:". By supplying a specially crafted URL a remote attacker can exploit this vulnerability to execute arbitrary code on the client's machine.
SolutionUpgrade to the latest version of Yahoo Instant Messenger.