Stack-based Buffer Overflow in Yahoo! Toolbar by Yahoo
CVE-2007-6228

Currently unrated

Key Information:

Vendor: Yahoo
Status: Toolbar
Vendor: CVE Published:; 4 December 2007

What is CVE-2007-6228?

The Yahoo! Toolbar contains a stack-based buffer overflow in the Helper class of the yt.ythelper.2 ActiveX control. This flaw allows remote attackers to exploit the application by providing a long argument to the c method, which can lead to a denial of service, causing the user's browser to crash. The vulnerability poses significant risks to users who have this version of Yahoo! Toolbar installed, as attackers could easily trigger the overflow and disrupt normal operations.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/38769

vdb-entryx_refsource_XF

http://lists.grok.org.uk/pipermail/full-disclosure/2007-N...

mailing-listx_refsource_FULLDISC

http://www.securityfocus.com/bid/26656

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2007
Vulnerability Reserved
Dec 4, 2007

CVE-2007-6228 Data

JSON