| Vulnerability Name: | CVE-2007-5017 (CCN-36694) | ||||||||
| Assigned: | 2007-09-19 | ||||||||
| Published: | 2007-09-19 | ||||||||
| Updated: | 2017-09-29 | ||||||||
| Summary: | Absolute path traversal vulnerability in a certain ActiveX control in the CYFT object in ft60.dll in Yahoo! Messenger 8.1.0.421 allows remote attackers to force a download, and create or overwrite arbitrary files via a full pathname in the second argument to the GetFile method. | ||||||||
| CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N) 4.5 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:F/RL:U/RC:UR)
8.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:F/RL:U/RC:UR)
| ||||||||
| Vulnerability Type: | CWE-22 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2007-5017 Source: CCN Type: Yahoo! Messenger Web site Yahoo! Messenger - Chat, Instant message, SMS, PC Calls and More Source: OSVDB Type: UNKNOWN 38296 Source: CCN Type: SECTRACK ID: 1018715 Yahoo Messenger GetFile() Method Lets Remote Users Download Arbitrary Files to the Target User`s System Source: CCN Type: OSVDB ID: 38296 Yahoo! Messenger CYFT Object ActiveX (ft60.dll) GetFile Method Arbitrary File Overwrite Source: BID Type: Exploit 25727 Source: CCN Type: BID-25727 Yahoo! Messenger CYFT FT60.DLL ActiveX Control GetFile Method Arbitrary File Upload Vulnerability Source: SECTRACK Type: UNKNOWN 1018715 Source: MISC Type: UNKNOWN http://www.shinnai.altervista.org/exploits/txt/TXT_KJDPaI2IlM5P9PP6N6dI.html Source: XF Type: UNKNOWN yahoo-messenger-ft60-code-execution(36694) Source: XF Type: UNKNOWN yahoo-messenger-ft60-code-execution(36694) Source: EXPLOIT-DB Type: UNKNOWN 4428 | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||