HTTP: Yahoo Messenger AudioConf ActiveX Control Buffer Overflow
This signature detects attempts to exploit a known vulnerability in Yahoo Messenger. Attackers can create Web pages containing dangerous ActiveX calls, which if accessed by a victim, allows the attacker to gain control of the victim's system.
Extended Description
The Audio Conferencing ActiveX control shipped with Yahoo! Messenger is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficiently sized memory buffer. Yahoo! Messenger versions released prior to March 13, 2007 are vulnerable to this issue.
Affected Products
Yahoo! messenger
References
BugTraq: 23291
CVE: CVE-2007-1680
URL: http://www.frsirt.com/english/advisories/2007/1219 http://messenger.yahoo.com/security_update.php?id=031207
Short Name
HTTP:STC:ACTIVEX:YAHOO-AUDIO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ActiveX AudioConf Buffer CVE-2007-1680 Control Messenger Overflow Yahoo bid:23291
Release Date
04/11/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Yahoo!
CVSS Score
9.3