Vulnerabilities > CVE-2002-0031 - Buffer Overflow vulnerability in Yahoo Messenger 5.0

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
yahoo
exploit available
NVD
Published: 2002-07-26
Updated: 2008-09-05

Summary

Buffer overflows in Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) addview, or (6) addfriend.

Vulnerable Configurations

Part Description Count
Application
Yahoo
1

Exploit-Db

  • descriptionYahoo! Messenger 5.0 Call Center Buffer Overflow Vulnerability. CVE-2002-0031. Remote exploit for windows platform
    idEDB-ID:21484
    last seen2016-02-02
    modified2002-05-27
    published2002-05-27
    reporterbob
    sourcehttps://www.exploit-db.com/download/21484/
    titleYahoo! Messenger 5.0 Call Center Buffer Overflow Vulnerability
  • descriptionYahoo Messenger 5.5 Remote Exploit (DSR-ducky.c). CVE-2002-0031. Remote exploit for windows platform
    idEDB-ID:45
    last seen2016-01-31
    modified2003-06-23
    published2003-06-23
    reporterRave
    sourcehttps://www.exploit-db.com/download/45/
    titleYahoo Messenger 5.5 - Remote Exploit DSR-ducky.c

References