|
Home Forum Radio Memberlist Help Search Quick Links | |
| Forum Index » Internet » Security Alerts and vulnerabilities » Yahoo Messenger |
| Security Alerts and vulnerabilities Lets keep abreast on the latest threats by posting those findings here.. |
 |
 |
|
Thread Tools | Display Modes |  |
|
#1
02-18-2005, 12:59 PM
|
||||
|
||||
|
Secunia Research has discovered a vulnerability in Yahoo! Messenger, which can be exploited by malicious people to trick users into executing malicious files.
The problem is that files with long filenames are not displayed correctly in the file transfer dialogs. This can be exploited to trick users into accepting and potentially executing malicious files. Successful exploitation requires that the option "Hide extension for known file types" is enabled in Windows (default setting). The vulnerability has been confirmed in version 6.0.0.1750. Other versions may also be affected. Solution: Update to version 6.0.0.1921 or later. http://messenger.yahoo.com/ Provided and/or discovered by: Andreas Sandblad, Secunia Research. http://ca.messenger.yahoo.com/downloadsucc...xe=1&p=Netscape 
|
 Posted |
|
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| New IM Worms Hit MSN Messenger | Mobo | Security Alerts and vulnerabilities | 0 | 03-08-2005 08:05 AM |
| Multiple Vulnerabilities in Yahoo | Mobo | Security Alerts and vulnerabilities | 0 | 02-24-2005 06:45 PM |
| Yahoo Messenger #2 | Mobo | Security Alerts and vulnerabilities | 0 | 02-18-2005 01:00 PM |
| Windows Messenger | Mobo | Software | 0 | 12-16-2004 11:06 PM |
| Windows Messenger | Mobo | Software Update Alerts | 0 | 12-02-2004 04:58 PM |
|
||
|
|
|
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
