Denial of Service Vulnerability in Yahoo! Messenger Service 18
CVE-2006-5563

Currently unrated

Key Information:

Vendor: Yahoo
Status: Messenger
Vendor: CVE Published:; 27 October 2006

What is CVE-2006-5563?

An unspecified vulnerability in Yahoo! Messenger, specifically in Service 18 before version 8.1.0.195, enables remote attackers to trigger a denial of service by sending a carefully crafted room name within a Conference Invite. This flaw results in a NULL dereference, causing the application to crash and leading to potential service interruptions for users relying on the messaging platform. The detailed nature of this vulnerability has been derived from various third-party sources, indicating a need for users to assess their software versions and apply necessary patches.

References

http://archives.neohapsis.com/archives/fulldisclosure/200...

mailing-listx_refsource_FULLDISC

http://secunia.com/advisories/22510

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/20625

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 27, 2006
Vulnerability Reserved
Oct 27, 2006

CVE-2006-5563 Data

JSON