Remote Code Execution Vulnerability in Yahoo! Toolbar for Chrome and Safari
CVE-2012-2647

Currently unrated

Key Information:

Vendor: Yahoo
Status: Toolbar
Vendor: CVE Published:; 31 July 2012

What is CVE-2012-2647?

The Yahoo! Toolbar versions 1.0.0.5 and earlier for Chrome and Safari have a security flaw that allows remote attackers to manipulate the configured search URL and intercept search terms. This can be achieved through a specially crafted web page that executes arbitrary code, leading to potential data exposure and unauthorized access. Users of affected versions are encouraged to update to the latest version to mitigate the risk associated with this vulnerability.

References

http://jvn.jp/en/jp/JVN51769987/index.html

third-party-advisoryx_refsource_JVN

http://jvndb.jvn.jp/jvndb/JVNDB-2012-000072

third-party-advisoryx_refsource_JVNDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 31, 2012

CVE-2012-2647 Data

JSON