Vulnerabilities > CVE-2006-3298 - Denial of Service vulnerability in Yahoo! Messenger Message Handling

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
yahoo
exploit available

Summary

Yahoo! Messenger 7.5.0.814 and 7.0.438 allows remote attackers to cause a denial of service (crash) via messages that contain non-ASCII characters, which triggers the crash in jscript.dll.

Vulnerable Configurations

Part Description Count
Application
Yahoo
2

Exploit-Db

descriptionYahoo! Messenger 7.0/7.5 jscript.dll Non-Ascii Character DoS. CVE-2006-3298. Dos exploit for windows platform
idEDB-ID:28099
last seen2016-02-03
modified2006-06-23
published2006-06-23
reporterIvan Ivan
sourcehttps://www.exploit-db.com/download/28099/
titleYahoo! Messenger 7.0/7.5 jscript.dll Non-Ascii Character DoS