| Vulnerability Name: | CVE-2007-3147 (CCN-34758) | ||||||||
| Assigned: | 2007-06-06 | ||||||||
| Published: | 2007-06-06 | ||||||||
| Updated: | 2018-10-16 | ||||||||
| Summary: | Buffer overflow in the Yahoo! Webcam Upload ActiveX control in ywcupl.dll 2.0.1.4 for Yahoo! Messenger 8.1.0.249 allows remote attackers to execute arbitrary code via a long server property value to the send method. Note: some of these details are obtained from third party information. | ||||||||
| CVSS v3 Severity: | 9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C) 7.7 High (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C)
6.3 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-119 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: CCN Type: Full-Disclosure Mailing List, Thu Jun 07 2007 - 13:20:51 CDT Yahoo 0day ActiveX Webcam Exploit Source: MITRE Type: CNA CVE-2007-3147 Source: FULLDISC Type: Exploit 20070606 Yahoo 0day ActiveX Webcam Exploit Source: CCN Type: Yahoo! Messenger Web site Security Update - Yahoo! Messenger Source: CONFIRM Type: Patch http://messenger.yahoo.com/security_update.php?id=060707 Source: CCN Type: eEye Digital Security Advisory AD20070608 Yahoo! Webcam ActiveX Controls Multiple Buffer Overflows Source: MISC Type: Vendor Advisory http://research.eeye.com/html/advisories/published/AD20070608.html Source: MISC Type: Vendor Advisory http://research.eeye.com/html/advisories/upcoming/20070605.html Source: CCN Type: SA25547 Yahoo! Messenger Two ActiveX Controls Buffer Overflows Source: SECUNIA Type: Patch, Vendor Advisory 25547 Source: SREASON Type: UNKNOWN 2809 Source: CCN Type: SECTRACK ID: 1018203 Yahoo Messenger Unspecified Bugs Let Remote Users Execute Arbitrary Code Source: CCN Type: SECTRACK ID: 1018204 Yahoo Messenger Buffer Overflows in Webcam ActiveX Controls Let Remote Users Execute Arbitrary Code Source: SECTRACK Type: UNKNOWN 1018204 Source: CCN Type: US-CERT VU#949817 Yahoo! Webcam image upload ActiveX control vulnerable to arbitrary code execution Source: CERT-VN Type: US Government Resource VU#949817 Source: CCN Type: OSVDB ID: 37082 Yahoo! Webcam Upload ActiveX (ywcupl.dll) send Method Overflow Source: BUGTRAQ Type: UNKNOWN 20070608 EEYE: Yahoo Webcam ActiveX Controls Multiple Buffer Overflows Source: BID Type: UNKNOWN 24341 Source: CCN Type: BID-24341 RETIRED: Yahoo! Messenger Multiple Unspecified Remote Code Execution Vulnerabilities Source: BID Type: Exploit 24354 Source: CCN Type: BID-24354 Yahoo! Messenger Webcam Upload ActiveX Control Buffer Overflow Vulnerability Source: SECTRACK Type: UNKNOWN 1018203 Source: VUPEN Type: UNKNOWN ADV-2007-2094 Source: XF Type: UNKNOWN yahoo-webcam-upload-bo(34758) Source: XF Type: UNKNOWN yahoo-webcam-upload-bo(34758) Source: EXPLOIT-DB Type: UNKNOWN 4042 Source: CCN Type: Rapid7 Vulnerability and Exploit Database [06-05-2007] Yahoo! Messenger 8.1.0.249 ActiveX Control Buffer Overflow | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||