IN ASSOCIATION WITH

 Home -   Events -   Training 

Yahoo battered by second ActiveX vulnerability
03-09-2007
by The Register

Yahoo users are urged to upgrade their instant messaging software following the discovery of a brace of security vulnerabilities -- the second set of serious security flaws involving Yahoo Messenger in as many weeks.

The latest security bugs both stem from stack-based buffer overflow flaws in the YVerInfo.dll ActiveX control. Successful exploitation, which is far from straightforward, creates a means for hackers to inject hostile code onto systems running vulnerable versions of Yahoo Messenger.

In order to exploit the bugs, hackers would need to establish a malicious web page in the yahoo.com domain, which might be done by methods such as a cross-site scripting vulnerability or by manipulating DNS resolution, security notification firm Secunia reports.

The vulnerabilities affect versions of Yahoo Messenger 8.x prior to version 8.1.0.419, released late last week. Users are urged to upgrade.

More background can be found in security advisories from Yahoo (here) and iDefense (here), the firm that discovered the bug.

Last month security researchers identified an even more serious bug -- again involving a dodgy ActiveX control -- that meant users were exposed to attack providing they accepted a webcam invite from a hacker.

In order to exploit the bugs, hackers would need to establish a malicious web page in the yahoo.com domain, which might be done by methods such as a cross-site scripting vulnerability or by manipulating DNS resolution, security notification firm Secunia reports.

The Register and its contents are copyright 2007 Situation Publishing. Reprinted with permission.