CVE-2002-0031 Information

Description

Buffer overflows in Yahoo! Messenger 5001064 and earlier allows remote attackers to execute arbitrary code via a ymsgr URI with long arguments to (1) call (2) sendim (3) getimv (4) chat (5) addview or (6) addfriend.

Reference

http://online.securityfocus.com/archive/1/274223 http://www.cert.org/advisories/CA-2002-16.html http://www.kb.cert.org/vuls/id/137115 http://www.securityfocus.com/bid/4837