Buffer Overflow in Yahoo! Toolbar's YShortcut ActiveX Control
CVE-2007-6535

Currently unrated

Key Information:

Vendor: Yahoo
Status: Toolbar
Vendor: CVE Published:; 27 December 2007

What is CVE-2007-6535?

A buffer overflow vulnerability exists in the YShortcut ActiveX control within Yahoo! Toolbar version 2006.8.15.1. Malicious actors can exploit this flaw by sending a long string to the IsTaggedBM method, potentially executing arbitrary code on the affected system. This type of vulnerability could lead to serious security risks if left unaddressed, as it allows unauthorized access and control over the affected applications.

References

http://www.securityfocus.com/bid/26956

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/39155

vdb-entryx_refsource_XF

http://lists.grok.org.uk/pipermail/full-disclosure/2007-D...

mailing-listx_refsource_FULLDISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 27, 2007
Vulnerability Reserved
Dec 27, 2007

CVE-2007-6535 Data

JSON