HTTP: Yahoo Messenger YMailAttach ActiveX Control Buffer Overflow
This signature detects attempts to use unsafe ActiveX controls in Yahoo Messenger YMailAttach. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.
Extended Description
The YMailAttach ActiveX control shipped with Yahoo! Messenger is prone to a buffer-overflow vulnerability. The software fails to perform sufficient bounds-checking of user-supplied input before copying it to an insufficiently sized memory buffer. Yahoo! Messenger versions released prior to November 2, 2006 are vulnerable to this issue.
Affected Products
Yahoo! messenger
References
BugTraq: 21607
CVE: CVE-2006-6603
URL: http://messenger.yahoo.com/security_update.php?id=120806
Short Name
HTTP:STC:ACTIVEX:YMAILATTACH-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ActiveX Buffer CVE-2006-6603 Control Messenger Overflow YMailAttach Yahoo bid:21607
Release Date
07/12/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Yahoo!
CVSS Score
9.3