Vulnerabilities > CVE-2005-1618 - Remote Denial Of Service vulnerability in Yahoo Messenger 5.5/5.6/6.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
yahoo
exploit available

Summary

The YMSGR URL handler in Yahoo! Messenger 5.x through 6.0 allows remote attackers to cause a denial of service (disconnect) via a room login or a room join request packet with a third : (colon) and an & (ampersand), which causes Messenger to send a corrupted packet to the server, which triggers a disconnect from the server.

Vulnerable Configurations

Part Description Count
Application
Yahoo
3

Exploit-Db

descriptionYahoo! Messenger 5.x/6.0 URL Handler Remote Denial Of Service Vulnerability. CVE-2005-1618. Dos exploit for windows platform
idEDB-ID:25658
last seen2016-02-03
modified2005-05-13
published2005-05-13
reporterTorseq Tech
sourcehttps://www.exploit-db.com/download/25658/
titleYahoo! Messenger 5.x/6.0 URL Handler Remote Denial of Service Vulnerability