Filtered by vendor Yahoo Subscriptions

Search

Switch to Advanced Search (Beta)
Total 68 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2006-4975 1 Yahoo 1 Messenger 2025-04-03 N/A
Yahoo! Messenger for WAP permits saving messages that contain JavaScript, which allows user-assisted remote attackers to inject arbitrary web script or HTML via a URL at the online service.
CVE-2002-0031 1 Yahoo 1 Messenger 2025-04-03 N/A
Buffer overflows in Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary code via a ymsgr URI with long arguments to (1) call, (2) sendim, (3) getimv, (4) chat, (5) addview, or (6) addfriend.
CVE-2006-3298 1 Yahoo 1 Messenger 2025-04-03 N/A
Yahoo! Messenger 7.5.0.814 and 7.0.438 allows remote attackers to cause a denial of service (crash) via messages that contain non-ASCII characters, which triggers the crash in jscript.dll.
CVE-2005-0737 1 Yahoo 1 Messenger 2025-04-03 N/A
Buffer overflow in Yahoo! Messenger allows remote attackers to execute arbitrary code via the offline mode.
CVE-2005-0242 1 Yahoo 1 Messenger 2025-04-03 N/A
The Audio Setup Wizard (asw.dll) in Yahoo! Messenger 6.0.0.1750, and possibly other versions, allows attackers to arbitrary code by placing a malicious ping.exe program into the Messenger program directory, which is installed with weak default permissions.
CVE-2000-0047 1 Yahoo 1 Pager 2025-04-03 N/A
Buffer overflow in Yahoo Pager/Messenger client allows remote attackers to cause a denial of service via a long URL within a message.
CVE-2002-1665 1 Yahoo 1 Messenger 2025-04-03 N/A
Buffer overflow in Yahoo! Messenger before February 2002 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long set_buddygrp field.
CVE-2019-6035 1 Yahoo 1 Athenz 2024-11-21 6.1 Medium
Open redirect vulnerability in Athenz v1.8.24 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted page.