main
Report a problem

Yahoo Posts Exploit Fix for Messenger Flaws

Daniel Fleshbourne   on 11 June 2007 - 12:19 · 4 comments & 2576 views

Advertisement (Why?)
Exploit code is out for critical Yahoo Messenger flaws found by eEye Digital Security earlier this week. Both of the flaws, which allow for system hijacking, are boundary errors in two ActiveX controls in Yahoo Messenger's Webcam Upload and Webcam Viewer.

Security researchers say that they expect attacks using the flaws to arrive soon. That makes prompt patching critical. Yahoo has an update available, Version 8.1.0.401, to fix the vulnerability, posted at messenger.yahoo.com. The company provided this statement on the issue:

"The Yahoo Messenger team recently learned of a buffer overflow security issue in an ActiveX control. Upon learning of this issue, we began working towards a resolution and implemented a fix to Yahoo Messenger's software download. We are encouraging all Yahoo Messenger users to download the latest version (8.1.0.401) available at messenger.yahoo.com."

View: The full story
News source: eWeek

Share this Article

  • Technorati
  • Magnolia
  • Stumble upon it
  • Reddit
  • Blink List
  • Delicious
  • Slashdot
  • Furl
  • Facebook
  • Windows Live
  • Google
  • Newsvine
  • Yahoo
  • RawSugar
  • Netvouz

About the Author

Full name: Daniel Fleshbourne
User name: Daniel
Contact: via forum PM
Submissions: View All
More: View Bio   New!

Related news

 

Post a comment · Send to friend Comments · There are 4 additional comments
#1 leesmithg on 11 Jun 2007 - 14:39
It does not matter what they do with this app it still has exploits.

I prefer YahElite myself if I ever use a yahoo chat room.
#2 NightmarE D on 11 Jun 2007 - 15:51
^YahElite is not as secure as they make it sound.

Best thing to do is just not go into their chat. Their chat is a joke anymore anyway. 50 people can be in a room and 35 are porn/spam bots, 10 are booter bots and the 5 left are usually idiotic guys thinking the bots are real women wanting them to view their cams I haven't been in a Yahoo chat room in about 2 years. Yahoo needs to fix the bot issue if they want people to stay in their chat anymore or jsut get rid of their chat completely.
#3 RADicaLMMS on 11 Jun 2007 - 19:09
People use it for Yahoo! Voice too, its still smaller than Skype and WLM and hey guess what! It still manages to do more.

Comments / Complaints - Atleast Yahoo! might read some
Yahoo! Messenger Blog
#4 Izlude on 12 Jun 2007 - 07:54
when are they gonna complete the new yahoo for vista? gah chargleberry!!!

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Advertisement (Why?)
News powered by Neowin Management System (Build - 5.0.1387) © 2000 - 2008 Neowin.net