CVE-2008-0623 Information

Description

Stack-based buffer overflow in the YMP Datagrid ActiveX control (datagrid.dll) in Yahoo! Music Jukebox 2.2.2.056 allows remote attackers to execute arbitrary code via a long argument to the AddImage method.

Reference

http://secunia.com/advisories/28757 http://www.kb.cert.org/vuls/id/101676 http://www.securityfocus.com/bid/27590 http://www.securitytracker.com/id?1019301 http://www.vupen.com/english/advisories/2008/0396/references https://www.exploit-db.com/exploits/5043 https://www.exploit-db.com/exploits/5046 https://www.exploit-db.com/exploits/5048