2012-01-19 16:55:00 2012-01-23 06:00:00

Integer overflow in the CYImage::LoadJPG method in YImage.dll in Yahoo! Messenger before 11.5.0.155, when photo sharing is enabled, might allow remote attackers to execute arbitrary code via a crafted JPG image that triggers a heap-based buffer overflow.

Vector

NETWORK

Complexity

HIGH

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL
OpenVPN 1.3.0 OpenTTD 1.1.3 OpenVPN 1.4.3 OpenVas OpenVas Administrator 1.3.2 OpenVPN 1.5.0 OpenTTD 1.3.3 OpenVPN 1.2.1 OpenVAS Manager 4.0 beta5 OpenVAS Manager 4.0 beta4 OpenVAS Manager 4.0.0 OpenVAS Manager 5.0.0 OpenVAS Manager 4.0 beta1 OpenVAS Manager 3.0.7 OpenVAS Manager 5.0.0 beta11 OpenVas OpenVas Administrator 1.2.0 OpenType Sanitiser project OpenType Sanitiser OpenVPN OpenVas OpenVas Administrator 1.3 release candidate 1 OpenVPN 1.4.1 OpenVAS Manager 5.0.5 OpenTTD 1.2.3 OpenTTD 1.2.1 OpenVPN 1.4.2 OpenVAS Manager 3.0-beta6 OpenTTD 1.3.2 OpenVAS Manager 3.0.2 OpenTTD 1.3.1 OpenTTD 1.2.2 OpenVPN 1.6.0 OpenVas OpenVas Administrator 1.2.1 OpenVAS Manager 5.0.0 beta13 OpenVAS Manager 3.0.0 OpenVAS Manager 4.0.4 OpenVAS Manager 4.0.5 OpenVPN 1.3.1 OpenVAS Manager 5.0.3 OpenVAS Manager 4.0.6 OpenVPN 1.3.2 OpenVAS Manager 4.0.3 OpenVAS Manager 5.0.0 beta1 OpenVAS Manager 5.0.0 beta3 OpenVAS Manager 4.0 release candidate 1 OpenVAS Manager 5.0.0 beta5 OpenVAS Manager 4.0.2 OpenVAS Manager 4.0 beta3 OpenVAS Manager 3.0-beta8 OpenVAS Manager 5.0.0 beta6 OpenVas OpenVas Administrator 1.3.0 OpenVAS Manager 3.0.5 OpenVAS Manager 3.0-beta2 OpenVAS Manager 5.0.4 OpenVAS Manager 3.0.4 OpenVAS Manager 5.0.0 beta12 OpenVAS Manager 3.0-beta5 OpenVAS Manager 3.0.1 OpenVAS Manager 3.0.6 OpenVas OpenVas Administrator 1.3.1 OpenVAS Manager 5.0.0 beta9 OpenVAS Manager 5.0.0 beta2 OpenVAS Manager 4.0.1 OpenVas OpenVas Administrator 1.3 beta1 OpenVAS Manager 5.0.2 OpenVAS Manager 5.0.6 OpenVAS Manager 3.0.3 OpenVAS Manager 5.0.0 beta4 OpenVAS Manager 5.0.1 OpenVas OpenVas Administrator 1.2 release candidate 1 OpenVPN 2.0.0 OpenVAS Manager 4.0 beta2 OpenVAS Manager 3.0-beta7 OpenVas OpenVas Administrator 1.2.2 OpenVPN 1.2.0 OpenTTD 1.2.0 OpenVAS Manager 3.0-rc1 OpenVAS Manager 5.0.0 beta8 OpenVAS Manager 3.0-beta3 OpenTTD 1.1.4 OpenTTD 1.1.5 OpenVAS Manager 3.0-beta4 OpenVAS Manager 5.0.0 beta10 OpenVPN 1.4.0 OpenVAS Manager 5.0.0 beta7 OpenVAS Manager 3.0-beta1
Advisory Patch Confirmed Link
47041