NVD

Id
53862  
Name
CVE-2007-1680  
Description
Stack-based buffer overflow in the createAndJoinConference function in the AudioConf ActiveX control (yacscom.dll) in Yahoo! Messenger before 20070313 allows remote attackers to execute arbitrary code via long (1) socksHostname and (2) hostname properties.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-04-05  
Modified Date
2011-03-07  
Seq
2007-1680  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
273080 53862 CVE-2007-1680 http://messenger.yahoo.com/security_update.php?id=031207  View
273081 53862 CVE-2007-1680 2523  View
273082 53862 CVE-2007-1680 VU#388377  View
273083 53862 CVE-2007-1680 20070403 ZDI-07-012: Yahoo! Messenger AudioConf ActiveX Control Buffer Overflow  View
273084 53862 CVE-2007-1680 23291  View
273085 53862 CVE-2007-1680 1017867  View
273086 53862 CVE-2007-1680 ADV-2007-1219  View
273087 53862 CVE-2007-1680 http://www.zerodayinitiative.com/advisories/ZDI-07-012.html  View
273088 53862 CVE-2007-1680 yahoo-yahooaudioconf-activex-bo(33408)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
56620 JVNDB-2007-005312 Yahoo! Messenger の AudioConf ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 Yahoo! Messenger の AudioConf ActiveX コントロール (yacscom.dll) の createAndJoinConference 関数には、スタックベースのバッファオーバーフローの脆弱性が存在します。 CVE-2007-1680 25035 CVE-2007-1680 53862 9.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005312.html 2007-04-05 2012-12-20 View