CVE-2007-3147

Buffer overflow in the Yahoo! Webcam Upload ActiveX control in ywcupl.dll 2.0.1.4 for Yahoo! Messenger 8.1.0.249 allows remote attackers to execute arbitrary code via a long server property value to the send method. NOTE: some of these details are obtained from third party information.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:yahoo:messenger:2.0.1.4:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0.0.863:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.0_2005.1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:yahoo:messenger:8.1.0.249:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-06-11 18:30

Updated : 2023-12-10 10:40


NVD link : CVE-2007-3147

Mitre link : CVE-2007-3147

CVE.ORG link : CVE-2007-3147


JSON object : View

Products Affected

yahoo

  • messenger
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer