Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2111

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-2111
Last Modified 07 Mar 2011 10:08:42
Published 07 May 2008 07:20:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-2111

Summary

The ActiveX Control (yNotifier.dll) in Yahoo! Assistant 3.6 and earlier allows remote attackers to execute arbitrary code via unspecified vectors in the Ynoifier COM object that trigger memory corruption.

Vulnerable Systems

Application

  • Yahoo Assistant 3.6


References

XF - yahoo-assistant-ynotifier-code-execution(42233)

VUPEN - ADV-2008-1471

BID - 29065

MISC - http://secway.org/advisory/AD20080506EN.txt

SECTRACK - 1020004

SECUNIA - 30115


Last Updated: 27 May 2016 10:47:46