Executive Summary
Summary | |
---|---|
Title | Yahoo! Messenger webcam stream heap overflow |
Informations | |||
---|---|---|---|
Name | VU#515968 | First vendor Publication | 2007-08-17 |
Vendor | VU-CERT | Last vendor Modification | 2007-08-28 |
Severity (Vendor) | N/A | Revision | M |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Vulnerability Note VU#515968Yahoo! Messenger webcam stream heap overflowOverviewYahoo! Messenger fails to properly handle webcam streams, which may allow a remote attacker to execute arbitrary code.I. DescriptionYahoo! Messenger is an instant messaging application that is available for Windows, Mac, Unix, web, and mobile systems. Some version of Yahoo! Messenger, such as the Windows and Mac versions, support webcam use. When Yahoo! Messenger views a webcam stream, it makes a connection to port 5100/tcp. The webcam video stream is sent as a JPEG 2000 code stream. Yahoo! Messenger appears to require user interaction to connect a webcam stream.Yahoo! Messenger contains a heap overflow in the handling of a malformed JPEG 2000 code streams. Exploit code that causes a denial of service is publicly available. This issue is addressed by the Yahoo! Webcam Security Update. Versions of Yahoo! Messenger downloaded after August 21, 2007 contain kdv_v32M.dll version 3.2.0.2 and ywcvwr.dll version 2.0.1.9, which address the vulnerability.
References
This vulnerability was publicly disclosed by team509. This document was written by Will Dormann.
|
Original Source
Url : http://www.kb.cert.org/vuls/id/515968 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
50 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
50 % | CWE-20 | Improper Input Validation |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
38221 | Yahoo! Messenger Kakadu (kdu_v32m.dll) Webcam JPEG 2000 Data Handling Overflow |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2007-08-27 | Name : The instant messaging application on the remote Windows host is affected by m... File : yahoo_msgr_8_1_0_416.nasl - Type : ACT_GATHER_INFO |