Critical bug hits Yahoo Messenger

By

IM flaw allows attackers to take control of a system.


IM flaw allows attackers to take control of a system.

Yahoo Messenger users are being urged to upgrade to the latest version after the application was hit by a 'highly critical' vulnerability. 

The flaw allows for a buffer overflow attack against an ActiveX control bundled with the installer for the application. An attacker could exploit the vulnerability to take control of a system by luring a user to a specially crafted website.

Yahoo said in a security advisory that it is not aware of any attacks exploiting the flaw.

Danish security vendor Secunia gave the flaw a severity rating of 'highly critical', the fourth on a five step scale.

The flaw affects Yahoo Messenger versions 2005.1.1.4 and above. An update can be downloaded from Yahoo's website.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers

Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies

Victoria's Secret pulls down website amid security incident

Victoria's Secret pulls down website amid security incident

Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames

Log In

  |  Forgot your password?