CVE-2007-3148

Published: Jun 11, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Buffer overflow in the Yahoo! Webcam Viewer ActiveX control in ywcvwr.dll 2.0.1.4 for Yahoo! Messenger 8.1.0.249 allows remote attackers to execute arbitrary code via a long server property value to the receive method.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

4043

exploit

x_refsource_EXPLOIT-DB

yahoo-webcam-viewer-bo(34759)

vdb-entry

x_refsource_XF

37081

vdb-entry

x_refsource_OSVDB

http://research.eeye.com/html/advisories/upcoming/20070605.html

x_refsource_MISC

24355

vdb-entry

x_refsource_BID

http://messenger.yahoo.com/security_update.php?id=060707

x_refsource_CONFIRM

ADV-2007-2094

vdb-entry

x_refsource_VUPEN

25547

third-party-advisory

x_refsource_SECUNIA

20070608 EEYE: Yahoo Webcam ActiveX Controls Multiple Buffer Overflows

mailing-list

x_refsource_BUGTRAQ

1018204

vdb-entry

x_refsource_SECTRACK

20070607 2nd Yahoo 0day ActiveX Exploit

mailing-list

x_refsource_FULLDISC

24341

vdb-entry

x_refsource_BID

1018203

vdb-entry

x_refsource_SECTRACK

http://research.eeye.com/html/advisories/published/AD20070608.html

x_refsource_MISC

VU#932217

third-party-advisory

x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-3148

Description

Affected Products

References